555 matches found
CVE-2022-40874
Tenda AX1803 v1.0.0.1 was discovered to contain a heap overflow vulnerability in the GetParentControlInfo function, which can cause a denial of service attack through a carefully constructed http request...
CVE-2022-40875
Tenda AX1803 v1.0.0.1 was discovered to contain a heap overflow in the function GetParentControlInfo...
PT-2022-25600 · Tenda · Tenda Ax1803
Name of the Vulnerable Software and Affected Versions: Tenda ax1803 version 1.0.0.1 Description: The issue concerns http requests handled by the fromAdvSetMacMtuWan functions, specifically the wanSpeed, cloneType, and mac variables, which can cause a stack overflow and enable remote code executio...
CVE-2022-40876
The CVE-2022-40876 entry concerns Tenda AX1803 v1.0.0.1, where HTTP requests processed by the fromAdvSetMacMtuWan functions, specifically involving wanSpeed, cloneType, and mac, can trigger a stack overflow and enable remote code execution (RCE). Public references (NVD, Red Hat, CVE listings) cor...
PT-2022-25599 · Tenda · Tenda Ax1803
Name of the Vulnerable Software and Affected Versions: Tenda AX1803 version 1.0.0.1 Description: A heap overflow issue was discovered in the function GetParentControlInfo. Recommendations: For Tenda AX1803 version 1.0.0.1, consider disabling the GetParentControlInfo function as a temporary...
Tenda AX1803 fromSysToolReboot Function Cross-Site Request Forgery Vulnerability
Tenda AX1803 is a dual-band Gigabit WIFI6 router from Tenda China. A cross-site request forgery vulnerability exists in the Tenda AX1803 firmware, version USAX1803v2.0brv1.0.0.12994CNZGYD014, which exists in the /bin/tdhttpd file fromSysToolReboot function/goform/SysToolReboot page. An attacker...
Tenda AX1803 TendaAteMode Function Cross-Site Request Forgery Vulnerability
The Tenda AX1803 is a dual-band Gigabit WIFI6 router. A cross-site request forgery vulnerability exists in the Tenda AX1803 firmware, version USAX1803v2.0brv1.0.0.12994CNZGYD014, which exists in the /bin/tdhttpd file TendaAteMode function/goform/ateMode page, which can be exploited by an attacker...
CVE-2022-42086
Tenda AX1803 USAX1803v2.0brv1.0.0.12994CNZGYD014 is vulnerable to Cross Site Request Forgery CSRF via function TendaAteMode...
CVE-2022-42087
Tenda AX1803 USAX1803v2.0brv1.0.0.12994CNZGYD014 is vulnerable to Cross Site Request Forgery CSRF via function fromSysToolReboot...
CVE-2022-42086
Tenda AX1803 USAX1803v2.0brv1.0.0.12994CNZGYD014 is vulnerable to Cross Site Request Forgery CSRF via function TendaAteMode...
CVE-2022-42087
Tenda AX1803 USAX1803v2.0brv1.0.0.12994CNZGYD014 is vulnerable to Cross Site Request Forgery CSRF via function fromSysToolReboot...
Cross site request forgery (csrf)
Tenda AX1803 USAX1803v2.0brv1.0.0.12994CNZGYD014 is vulnerable to Cross Site Request Forgery CSRF via function TendaAteMode...
Cross site request forgery (csrf)
Tenda AX1803 USAX1803v2.0brv1.0.0.12994CNZGYD014 is vulnerable to Cross Site Request Forgery CSRF via function fromSysToolReboot...
PT-2022-26244 · Tenda · Tenda Ax1803
Name of the Vulnerable Software and Affected Versions: Tenda AX1803 version US AX1803v2.0br v1.0.0.1 2994 CN ZGYD01 4 Description: The issue is related to Cross Site Request Forgery CSRF and is exploitable via the TendaAteMode function. Recommendations: For Tenda AX1803 version US AX1803v2.0br...
CVE-2022-42086
CVE-2022-42086 affects the Tenda AX1803 router (firmware US_AX1803v2.0br_v1.0.0.1_2994_CN_ZGYD01_4). The vulnerability is a Cross-Site Request Forgery (CSRF) via the function TendaAteMode (page/goform/ateMode). Reports from CNVD/Red Hat/CNNVD and others confirm CSRF in the TendaAteMode pathway, w...
Tenda AX1803 跨站请求伪造漏洞
Tenda AX1803 is a dual-band Gigabit WIFI6 router from Tenda China. A cross-site request forgery vulnerability exists in the Tenda AX1803 firmware, version USAX1803v2.0brv1.0.0.12994CNZGYD014, which exists in the /bin/tdhttpd file fromSysToolReboot function/goform/SysToolReboot page. An attacker...
CVE-2022-42086
Tenda AX1803 USAX1803v2.0brv1.0.0.12994CNZGYD014 is vulnerable to Cross Site Request Forgery CSRF via function TendaAteMode...
Tenda AX1803 跨站请求伪造漏洞
The Tenda AX1803 is a dual-band Gigabit WIFI6 router. A cross-site request forgery vulnerability exists in the Tenda AX1803 firmware, version USAX1803v2.0brv1.0.0.12994CNZGYD014, which exists in the /bin/tdhttpd file TendaAteMode function/goform/ateMode page, which can be exploited by an attacker...
CVE-2022-42087
CVE-2022-42087 affects Tenda AX1803 router with firmware US_AX1803v2.0br_v1.0.0.1_2994_CN_ZGYD01_4. The issue is a CSRF in the /bin/tdhttpd function fromSysToolReboot, enabling unauthorized requests that can lead to a denial of service (CVSS v3.1: AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H; base score 6...
CVE-2022-42087
Tenda AX1803 USAX1803v2.0brv1.0.0.12994CNZGYD014 is vulnerable to Cross Site Request Forgery CSRF via function fromSysToolReboot...