PT-2024-31184 · Tenda · Tenda Ax1806

Name of the Vulnerable Software and Affected Versions: Tenda AX1806 version 1.0.0.1 Description: The issue is a stack overflow that occurs via the serverName parameter in the form fast setting internet set function. Recommendations: For Tenda AX1806 version 1.0.0.1, as a temporary workaround,...

Tenda AX1803 Security Vulnerability

Tenda AX1803 is a dual-band Gigabit WIFI6 router from Tenda China. A security vulnerability exists in the Tenda AX1803 v.1.0.0.1, which originates from an arbitrary code execution vulnerability in the adslPwd parameter of the formfastsettinginternetset function...

TOTOLINK A7100RU 命令注入漏洞

The TOTOLINK A7100RU is a wireless router manufactured by China's Gion Electronics TOTOLINK, mainly used for home network connection. The TOTOLINK A7100RU suffers from a command injection vulnerability that stems from the downBw parameter of /setting/setWanIeCfg failing to properly filter...

Tenda AX12 操作系统命令注入漏洞

Tenda AX12 is a dual-band Gigabit Wifi 6 wireless router from Tenda, China. An operating system command injection vulnerability exists in Tenda AX12 version V22.03.01.16cn, which originates from a command injection vulnerability via goform/fastsettinginternetset...