7 matches found
CVE-2025-14526
A security flaw has been discovered in Tenda CH22 1.0.0.1. This affects the function frmL7ImForm of the file /goform/L7Im. Performing a manipulation of the argument page results in buffer overflow. Remote exploitation of the attack is possible. The exploit has been released to the public and may ...
CVE-2025-9443
A flaw has been found in Tenda CH22 1.0.0.1. This vulnerability affects the function formeditUserName of the file /goform/editUserName. Executing manipulation of the argument newaccount can lead to buffer overflow. It is possible to launch the attack remotely. The exploit has been published and m...
CVE-2022-40875
Tenda AX1803 v1.0.0.1 was discovered to contain a heap overflow in the function GetParentControlInfo...
CVE-2023-51956
Tenda AX1803 v1.0.0.1 contains a stack overflow via the iptv.city.vlan parameter in the function formSetIptv...
CVE-2023-51972
Tenda AX1803 v1.0.0.1 was discovered to contain a command injection vulnerability via the function fromAdvSetLanIp...
PT-2023-9691 · Tenda · Tenda Ax1806
Name of the Vulnerable Software and Affected Versions: Tenda AX1806 version 1.0.0.1 Description: The issue is related to a stack overflow vulnerability in the sub 455D4 function of the Tenda AX1806 router's firmware, which occurs when processing the wpapsk crypto parameter. This vulnerability can...
Tenda AX1806 操作系统命令注入漏洞
The Tenda AX1806 is a WiFi6 wireless router from Tenda China. The Tenda AX1806 suffers from a command injection vulnerability that stems from the SetIPv6Status function failing to properly filter construct command special characters, commands, etc. No detailed vulnerability details are provided a...