4 matches found
CVE-2022-24172
Tenda routers G1 and G3 v15.11.0.179502CN were discovered to contain a stack overflow in the function formAddDhcpBindRule. This vulnerability allows attackers to cause a Denial of Service DoS via the addDhcpRules parameter...
CVE-2021-45992
Tenda routers G1 and G3 v15.11.0.179502CN were discovered to contain a stack overflow in the function formSetQvlanList. This vulnerability allows attackers to cause a Denial of Service DoS via the qvlanName parameter...
CVE-2021-45993
Tenda routers G1 and G3 v15.11.0.179502CN were discovered to contain a stack overflow in the function formIPMacBindModify. This vulnerability allows attackers to cause a Denial of Service DoS via the IPMacBindRuleIP and IPMacBindRuleMac parameters...
CVE-2021-27692
Command Injection in Tenda G1 and G3 routers with firmware versions v15.11.0.179502CN or v15.11.0.169024CN allows remote attackers to execute arbitrary OS commands via a crafted "action/umountUSBPartition" request. This occurs because the "formSetUSBPartitionUmount" function executes the...