132 matches found
PT-2024-2596 · Tenda · Tenda Ac7
Name of the Vulnerable Software and Affected Versions: Tenda AC7 version 15.03.06.44 Description: A critical issue has been discovered in the Tenda AC7, specifically in the function formSetCfm located in the "/goform/setcfm" file. This issue is caused by the manipulation of the funcpara1 argument...
Tenda AC7 安全漏洞
Tenda AC7 is a 1200M dual-band wireless router designed for large households by Tenda Technology, which adopts the 802.11ac standard and supports dual-band concurrent transmission with a wireless rate of up to 1167Mbps. Tenda AC7 suffers from a buffer overflow vulnerability, which originates from...
The vulnerability of the formSetCfm function (implemented by goform/setcfm) in the Tenda AC10U router software allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the formSetPPTPServer /goform/SetPptpServerCfg function in the Tenda AC10U router software is related to buffer overflow in the stack. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected...
CVE-2024-2763
A vulnerability, which was classified as critical, has been found in Tenda AC10U 15.03.06.48. Affected by this issue is the function formSetCfm of the file goform/setcfm. The manipulation of the argument funcpara1 leads to stack-based buffer overflow. The attack may be launched remotely. The...
PT-2024-2344 · Tenda · Tenda Ac10
Name of the Vulnerable Software and Affected Versions: Tenda AC10U version 15.03.06.48 Description: A critical issue has been found in the function formSetCfm of the file goform/setcfm, where the manipulation of the argument funcpara1 leads to a stack-based buffer overflow. This can be exploited...
PT-2024-2470 · Tenda · Tenda Fh1205
Name of the Vulnerable Software and Affected Versions: Tenda FH1205 version 2.0.0.7775 Description: A critical issue affects the formSetCfm function of the /goform/setcfm file, where the manipulation of the funcpara1 argument leads to a stack-based buffer overflow. This can be exploited remotely,...
Tenda i6 formSetCfm function buffer overflow vulnerability
Tenda i6 is a wireless access point from Tenda China. A buffer overflow vulnerability exists in Tenda i6 version 1.0.0.9, which originates from the funcpara1 parameter of the formSetCfm function in /goform/setcfm that fails to correctly validate the length of the input data, and can be exploited ...
The vulnerability of the formSetCfm() function in the httpd daemon of the wireless access points’ microprogramming software from Tenda i9, which allows a intruder to trigger a service failure.
The vulnerability of the formSetCfm function in the httpd daemon of the microprogrammed wireless access points from Tenda i9 is related to the operation that goes beyond the buffer in memory when processing the funcpara1 parameter. Exploiting this vulnerability could allow a malicious actor to...
The vulnerability of the formSetCfm() function in the httpd daemon of the microprogramming software for wireless access points from Tenda W6, which allows a intruder to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the formSetCfm function in the httpd daemon of the microprogrammed wireless access points of Tenda W6 is related to the operation that goes beyond the buffer in memory when processing the funcpara1 parameter. Exploiting this vulnerability could allow an attacker to compromise...
The vulnerability of the formSetCfm() function in the httpd daemon of the microprogramming software for wireless access points from Tenda i6 allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the formSetCfm function in the httpd daemon of the microprogrammed wireless access points from Tenda i6 is related to the operation that goes beyond the buffer in memory when processing the funcpara1 parameter. Exploiting this vulnerability could allow an attacker to compromi...
CVE-2024-0996 Tenda i9 httpd setcfm formSetCfm stack-based overflow
A vulnerability classified as critical has been found in Tenda i9 1.0.0.94122. This affects the function formSetCfm of the file /goform/setcfm of the component httpd. The manipulation of the argument funcpara1 leads to stack-based buffer overflow. It is possible to initiate the attack remotely. T...
CVE-2024-0994
A vulnerability was found in Tenda W6 1.0.0.94122. It has been declared as critical. Affected by this vulnerability is the function formSetCfm of the file /goform/setcfm of the component httpd. The manipulation of the argument funcpara1 leads to stack-based buffer overflow. The attack can be...
CVE-2024-0994 Tenda W6 httpd setcfm formSetCfm stack-based overflow
A vulnerability was found in Tenda W6 1.0.0.94122. It has been declared as critical. Affected by this vulnerability is the function formSetCfm of the file /goform/setcfm of the component httpd. The manipulation of the argument funcpara1 leads to stack-based buffer overflow. The attack can be...
CVE-2024-0991
A vulnerability has been found in Tenda i6 1.0.0.93857 and classified as critical. This vulnerability affects the function formSetCfm of the file /goform/setcfm of the component httpd. The manipulation of the argument funcpara1 leads to stack-based buffer overflow. The attack can be initiated...
Tenda i6 安全漏洞
Tenda i6 is a wireless access point from Tenda China. A buffer overflow vulnerability exists in Tenda i6 version 1.0.0.9, which originates from the funcpara1 parameter of the formSetCfm function in /goform/setcfm that fails to correctly validate the length of the input data, and can be exploited ...
Tenda i9 Security Vulnerability
The Tenda i9 is a ceiling-mountable wireless access point from Tenda China. A security vulnerability exists in Tenda i9 version 1.0.0.9, which originates from a stack-based buffer overflow in the funcpara1 parameter of the formSetCfm function in /goform/setcfm...
CVE-2023-38823
Buffer Overflow vulnerability in Tenda Ac19 v.1.0, AC18, AC9 v.1.0, AC6 v.2.0 and v.1.0 allows a remote attacker to execute arbitrary code via the formSetCfm function in bin/httpd...
CVE-2023-38823
Buffer Overflow vulnerability in Tenda Ac19 v.1.0, AC18, AC9 v.1.0, AC6 v.2.0 and v.1.0 allows a remote attacker to execute arbitrary code via the formSetCfm function in bin/httpd...
Buffer overflow
Buffer Overflow vulnerability in Tenda Ac19 v.1.0, AC18, AC9 v.1.0, AC6 v.2.0 and v.1.0 allows a remote attacker to execute arbitrary code via the formSetCfm function in bin/httpd...
CVE-2023-38823
CVE-2023-38823 describes a Buffer Overflow in Tenda AC19 v1.0, AC18, AC9 v1.0, and AC6 v2.0/v1.0, caused by a vulnerable formSetCfm function in bin/httpd. A remote attacker can trigger arbitrary code execution via POST to /goform/setcfm by sending crafted name*/value* pairs (PoC shows constructin...