142 matches found
CVE-2024-4497
A vulnerability was found in Tenda i21 1.0.0.144656. It has been declared as critical. This vulnerability affects the function formexeCommand. The manipulation of the argument cmdinput leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to th...
Tenda i21 安全漏洞
Tenda i21 is a wireless access point from Tenda China. A buffer overflow vulnerability exists in Tenda i21 version 1.0.0.144656, which originates from the parameter cmdinput of the function formexeCommand that fails to correctly validate the length of the input data, and can be exploited by a...
Tenda i21 安全漏洞
Tenda i21 is a wireless access point from Tenda China. A buffer overflow vulnerability exists in Tenda i21 version 1.0.0.144656, which originates from the parameter cmdinput of the formGetDiagnoseInfo function that fails to correctly validate the length and size of the input data, and can be...
Tenda FH1203 Command Injection Vulnerability
Tenda FH1203 is a dual-band wireless router from Tenda China, mainly used for home network coverage. The Tenda FH1203 suffers from a command injection vulnerability that stems from the cmdinput parameter of the formexeCommand method failing to properly filter construct command special characters,...
Tenda FH1202 Command Injection Vulnerability
Tenda FH1202 is a dual-band wireless router from Tenda that supports 2.4GHz and 5GHz bands with a total transmission rate of 1200Mbps. The Tenda FH1202 suffers from a command injection vulnerability that stems from the cmdinput parameter of the formexeCommand method failing to properly filter...
Tenda AC7 Command Injection Vulnerability
Tenda AC7 is a 1200M dual-band wireless router designed for large households by Tenda Technology, which adopts the 802.11ac standard and supports dual-band concurrent transmission with a wireless rate of up to 1167Mbps. Tenda AC7 suffers from a command injection vulnerability that stems from the...
Tenda W30E Command Injection Vulnerability
Tenda W30E is an enterprise-grade wireless router designed for SOHO, small and micro business offices and small store networking, supporting Wi-Fi 6 technology. The Tenda W30E suffers from a command injection vulnerability that stems from the cmdinput parameter of the formexeCommand method failin...
Unspecified Vulnerability in Tenda AC500 (CNVD-2024-23312)
The Tenda AC500 is a Gigabit port access controller from Tenda, China. A security vulnerability exists in Tenda AC500 version 2.0.1.91307, which originates from a buffer overflow issue in the cmdinput parameter of the formexeCommand method of the /goform/execCommand file. No details of the...
CVE-2024-32314
Tenda AC500 V2.0.1.91307 firmware contains a command injection vulnerablility in the formexeCommand function via the cmdinput parameter...
CVE-2024-32314
Tenda AC500 V2.0.1.91307 firmware contains a command injection vulnerablility in the formexeCommand function via the cmdinput parameter...
CVE-2024-32292
Tenda W30E v1.0 V1.0.1.25633 firmware contains a command injection vulnerablility in the formexeCommand function via the cmdinput parameter...
CVE-2024-32283
Tenda FH1203 V2.0.1.6 firmware has a command injection vulnerablility in formexeCommand function via the cmdinput parameter...
CVE-2024-32282
Tenda FH1202 v1.2.0.14408 firmware contains a command injection vulnerablility in the formexeCommand function via the cmdinput parameter...
CVE-2024-32283
Tenda FH1203 V2.0.1.6 firmware has a command injection vulnerablility in formexeCommand function via the cmdinput parameter...
CVE-2024-32281
Tenda AC7V1.0 v15.03.06.44 firmware contains a command injection vulnerablility in formexeCommand function via the cmdinput parameter...
CVE-2024-3909
A vulnerability classified as critical was found in Tenda AC500 2.0.1.91307. Affected by this vulnerability is the function formexeCommand of the file /goform/execCommand. The manipulation of the argument cmdinput leads to stack-based buffer overflow. The attack can be launched remotely. The...
Tenda W30E 安全漏洞
Tenda W30E is an enterprise-grade wireless router designed for SOHO, small and micro business offices and small store networking, supporting Wi-Fi 6 technology. The Tenda W30E suffers from a command injection vulnerability that stems from the cmdinput parameter of the formexeCommand method failin...
CVE-2024-32283
Tenda FH1203 V2.0.1.6 firmware has a command injection vulnerablility in formexeCommand function via the cmdinput parameter...
CVE-2024-32314
Tenda AC500 V2.0.1.91307 firmware contains a command injection vulnerablility in the formexeCommand function via the cmdinput parameter...
PT-2024-24489 · Tenda · Tenda W30E
Name of the Vulnerable Software and Affected Versions: Tenda W30E version 1.0 V1.0.1.25633 Description: The issue is a command injection vulnerability in the formexeCommand function via the cmdinput parameter. This allows for potential exploitation. Recommendations: For Tenda W30E version 1.0...