CVE-2025-65226

CVE-2025-65226 affects Tenda AC21 V16.03.08.16. Root cause: buffer overflow in deviceId parameter of /goform/saveParentControlInfo due to improper input length validation. Impact stated as denial of service. Exploitation status not provided; no remediation details are present in the provided docu...

Tenda AX-3 get_parentControl_list_Info function stack buffer overflow vulnerability

Tenda AX-3 is a home smart wireless router from Tenda that supports Wi-Fi6 802.11ax standard for home networking environment. The Tenda AX-3 suffers from a stack buffer overflow vulnerability that originates from the deviceId parameter in the getparentControllistInfo function failing to properly...

CVE-2025-63454

Tenda AX-3 v16.03.12.10CN was discovered to contain a stack overflow via the deviceId parameter in the getparentControllistInfo function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

CVE-2024-33180

Tenda AC18 V15.03.3.10EN was discovered to contain a stack-based buffer overflow vulnerability via the deviceId parameter at ip/goform/saveParentControlInfo...

PT-2024-25142 · Tenda · Tenda Ac18

Name of the Vulnerable Software and Affected Versions: Tenda AC18 version 15.03.3.10 EN Description: A stack-based buffer overflow issue was discovered via the deviceId parameter at the "ip/goform/saveParentControlInfo" endpoint. This allows for potential exploitation. Recommendations: For Tenda...

CVE-2023-44016

Tenda AC10U v1.0 USAC10UV1.0RTLV15.03.06.49multiTDE01 was discovered to contain a stack overflow via the deviceId parameter in the addWifiMacFilter function...

Tenda AC10 缓冲区错误漏洞

Tenda AC10U is a dual-band Gigabit wireless router from Tenda Technology, designed for 200 megabit and above fiber optic homes, supporting 802.11ac dual-band technology 2.4GHz and 5GHz, with a theoretical WiFi rate of up to 867Mbps. The Tenda AC10U suffers from a stack buffer overflow vulnerabili...

CVE-2023-38934

Tenda F1203 V2.0.1.6, FH1203 V2.0.1.6 and FH1205 V2.0.0.7775 was discovered to contain a stack overflow via the deviceId parameter in the formSetDeviceName function...

CVE-2023-38934

Tenda F1203 V2.0.1.6, FH1203 V2.0.1.6 and FH1205 V2.0.0.7775 was discovered to contain a stack overflow via the deviceId parameter in the formSetDeviceName function...

CVE-2023-38930

Tenda AC7 V1.0,V15.03.06.44, F1203 V2.0.1.6, AC5 V1.0,V15.03.06.28, AC9 V3.0,V15.03.06.42multi and FH1205 V2.0.0.7775 were discovered to contain a stack overflow via the deviceId parameter in the addWifiMacFilter function...

Tenda AC6 跨站脚本漏洞

The Tenda AC6 is a wireless router from Tenda, China. The Tenda AC6 AC1200 Smart Dual-Band WiFi Router 15.03.06.50multi suffers from a cross-site scripting vulnerability, which stems from a cross-site scripting XSS vulnerability found in the deviceId parameter of the Parental Control module...

CVE-2023-31679

Incorrect access control in Videogo v6.8.1 allows attackers to access images from other devices via modification of the Device Id parameter...

CVE-2022-45643

Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the deviceId parameter in the addWifiMacFilter function...

Tenda AC6 安全漏洞

Tenda AC6 is a wireless router from Tenda, China. A security vulnerability exists in Tenda AC6V1.0 V15.03.05.19, which originates from a buffer overflow vulnerability contained in the deviceId parameter in the formSetClientState function...

Coinbase: Simultaneous Session Logon : Improper Session Management

Hi, I would like to report this bug related to improper simultaneous logon. Issue: 1 When a user is logged in to the application already authenticated, visits the login page https://coinbase.com/signin he/she should directly get redirected to their home page as there is already a session running...