CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

8.8CVSS8AI score0.03293EPSS

Tenda AC7 安全漏洞

Tenda AC7 is a 1200M dual-band wireless router designed for large households by Tenda Technology, which adopts the 802.11ac standard and supports dual-band concurrent transmission with a wireless rate of up to 1167Mbps. Tenda AC7 suffers from a command injection vulnerability that stems from the...

6.3CVSS7.7AI score0.00451EPSS

Tenda FH1202 安全漏洞

Tenda FH1202 is a dual-band wireless router from Tenda that supports 2.4GHz and 5GHz bands with a total transmission rate of 1200Mbps. The Tenda FH1202 suffers from a command injection vulnerability that stems from the cmdinput parameter of the formexeCommand method failing to properly filter...

Exploits0References2

3.8CVSS7.7AI score0.00702EPSS

Tenda AC500 安全漏洞

Tenda AC500 is the wireless controller device introduced, designed for small and medium-sized businesses, with support for managing wireless networks across VLANs. Tenda AC500 suffers from a command injection vulnerability that stems from the cmdinput parameter of the formexeCommand method failin...

7.3CVSS8.2AI score0.00326EPSS

Tenda FH1203 安全漏洞

Tenda FH1203 is a dual-band wireless router from Tenda China, mainly used for home network coverage. The Tenda FH1203 suffers from a command injection vulnerability that stems from the cmdinput parameter of the formexeCommand method failing to properly filter construct command special characters,...

Positive Technologies•added 2024/04/17 12:0 a.m.•2 views

PT-2024-24482 · Tenda · Tenda F1203

Name of the Vulnerable Software and Affected Versions: Tenda FH1203 version 2.0.1.6 Description: The issue is a command injection vulnerability in the formexeCommand function via the cmdinput parameter. This allows for potential exploitation. Recommendations: For Tenda FH1203 version 2.0.1.6, as ...

7.3CVSS7.5AI score0.00326EPSS

Exploits1References5

CVE•added 2024/04/17 12:0 a.m.•58 views

CVE-2024-32281

CVE-2024-32281 affects Tenda AC7V1.0 firmware 15.03.06.44, with a command injection vulnerability in formexeCommand (cmdinput parameter ), caused by inadequate input handling and failure to filter construct commands. Exploitation could enable arbitrary command execution with network access, low p...

8.8CVSS7.5AI score0.03293EPSS

Exploits1References1Affected Software1

Vulnrichment•added 2024/04/17 12:0 a.m.•10 views

CVE-2024-32314

Tenda AC500 V2.0.1.91307 firmware contains a command injection vulnerablility in the formexeCommand function via the cmdinput parameter...

7.6AI score0.00702EPSS

CNVD•added 2024/04/10 12:0 a.m.•1 views

Tenda AC18 /goform/exeCommand Command Injection Vulnerability

Tenda AC18 is a dual-band wireless router launched by Shenzhen Jixiang Tenda Technology Co. in July 2016, mainly for villas and large home users. Tenda AC18 suffers from a command injection vulnerability that stems from the failure to properly filter construct command special characters, commands...

8.8CVSS8.5AI score0.00386EPSS

OSV•added 2024/04/05 8:15 a.m.•2 views

CVE-2024-30891

A command injection vulnerability exists in /goform/exeCommand in Tenda AC18 v15.03.05.05, which allows attackers to construct cmdinput parameters for arbitrary command execution...

8.8CVSS6AI score

Exploits0References1

CNNVD•added 2024/04/05 12:0 a.m.•1 views

Tenda AC18 安全漏洞

8.8CVSS8.3AI score0.00386EPSS

Positive Technologies•added 2024/04/05 12:0 a.m.•1 views

PT-2024-23662 · Tenda · Tenda Ac18

Name of the Vulnerable Software and Affected Versions: Tenda AC18 version 15.03.05.05 Description: A command injection issue exists, allowing attackers to execute arbitrary commands by constructing cmdinput parameters in the "/goform/exeCommand" API endpoint. Recommendations: For Tenda AC18 versi...

8.8CVSS8.3AI score0.00386EPSS

Exploits1References4

CNVD•added 2024/03/29 12:0 a.m.•1 views

Tenda FH1205 formexeCommand method stack buffer overflow vulnerability

The Tenda FH1205 is a home wireless router from China's Tenda, geared toward the average home network environment, providing wireless connectivity. The Tenda FH1205 suffers from a stack buffer overflow vulnerability that originates from the cmdinput parameter of the formexeCommand method of the...

9CVSS8.4AI score0.0045EPSS

CNVD•added 2024/03/29 12:0 a.m.•1 views

Tenda FH1203 formexeCommand Method Buffer Overflow Vulnerability

Tenda FH1203 is a dual-band wireless router from Tenda China, mainly used for home network coverage. The Tenda FH1203 suffers from a buffer overflow vulnerability that originates from the cmdinput parameter of the formexeCommand method of the /goform/execCommand file that fails to correctly...

9CVSS8.3AI score0.00354EPSS

OSV•added 2024/03/27 7:15 p.m.•0 views

CVE-2024-2990

A vulnerability, which was classified as critical, was found in Tenda FH1203 2.0.1.6. This affects the function formexeCommand of the file /goform/execCommand. The manipulation of the argument cmdinput leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The explo...

8.8CVSS6.3AI score

Exploits0References4

CNNVD•added 2024/03/27 12:0 a.m.•1 views

Tenda FH1203 安全漏洞

9CVSS8.2AI score0.00354EPSS

Exploits1References5

CNVD•added 2024/03/22 12:0 a.m.•1 views

Tenda AC10U formexeCommand function buffer overflow vulnerability

Tenda AC10U is a dual-band Gigabit router with 802.11ac Wave 2.0 standard, supporting MU-MIMO technology with high through-wall capability and stable transmission characteristics. The Tenda AC10U suffers from a buffer overflow vulnerability, which originates from the cmdinput parameter of the...

9CVSS8.2AI score0.00269EPSS