68 matches found
CVE-2024-33181
Tenda AC18 V15.03.3.10EN was discovered to contain a stack-based buffer overflow vulnerability via the deviceMac parameter at ip/goform/addWifiMacFilter...
CVE-2024-33182
Tenda AC18 V15.03.3.10EN was discovered to contain a stack-based buffer overflow vulnerability via the deviceId parameter at ip/goform/addWifiMacFilter...
CVE-2024-33182
Tenda AC18 V15.03.3.10EN was discovered to contain a stack-based buffer overflow vulnerability via the deviceId parameter at ip/goform/addWifiMacFilter...
PT-2024-25142 · Tenda · Tenda Ac18
Name of the Vulnerable Software and Affected Versions: Tenda AC18 version 15.03.3.10 EN Description: A stack-based buffer overflow issue was discovered via the deviceId parameter at the "ip/goform/saveParentControlInfo" endpoint. This allows for potential exploitation. Recommendations: For Tenda...
PT-2024-25143 · Tenda · Tenda Ac18
Name of the Vulnerable Software and Affected Versions: Tenda AC18 version 15.03.3.10 EN Description: A stack-based buffer overflow issue was discovered via the deviceMac parameter at the "ip/goform/addWifiMacFilter" endpoint. This issue can be exploited, potentially leading to unintended...
CVE-2024-33182
The CitE CVE-2024-33182 affects Tenda AC18 (firmware 15.03.3.10_EN). A stack-based buffer overflow is triggered via the deviceId parameter in ip/goform/addWifiMacFilter. Publicly reported metrics show a network-exposed, high-severity impact (NVD CVSS v3.1: 9.8/CRITICAL; Confidentiality/Integrity/...
CVE-2024-33181
Tenda AC18 V15.03.3.10EN was discovered to contain a stack-based buffer overflow vulnerability via the deviceMac parameter at ip/goform/addWifiMacFilter...
CVE-2024-33180
Tenda AC18 V15.03.3.10EN was discovered to contain a stack-based buffer overflow vulnerability via the deviceId parameter at ip/goform/saveParentControlInfo...
CVE-2024-33180
CVE-2024-33180 affects Tenda AC18 (firmware 15.03.3.10_EN). A stack-based buffer overflow originates from the deviceId parameter in ip/goform/saveParentControlInfo, enabling potential arbitrary code execution or denial of service. Documented impact is high for confidentiality, integrity, and avai...
CVE-2024-35340
CVE-2024-35340 affects Tenda FH1206 (version 1.2.0.8(8155)). The vulnerability is a command injection via the cmdinput parameter at ip/goform/formexeCommand, with CVSSv3.1 base score 8.6 (High) and impact on confidentiality (H) and integrity/availability (L). Connected advisories indicate exploit...
CVE-2024-35339
The CVE-2024-35339 entry concerns Tenda FH1206, affected version 1.2.0.8(8155), with a command injection vulnerability exposed via the mac parameter at ip/goform/WriteFacMac. The issue is described as allowing remote command execution and is supported by multiple sources. The CVSSv3.1 vector indi...
PT-2024-26441 · Tenda · Tenda Fh1206
Name of the Vulnerable Software and Affected Versions: Tenda FH1206 version 1.2.0.88155 Description: A command injection issue was found, which can be exploited via the cmdinput parameter at the "ip/goform/formexeCommand" endpoint. Recommendations: For Tenda FH1206 version 1.2.0.88155, avoid usin...
VulnCheck KEV: CVE-2022-31446
Tenda AC18 router V15.03.05.19 and V15.03.05.05 was discovered to contain a remote code execution RCE vulnerability via the Mac parameter at ip/goform/WriteFacMac...
CVE-2024-34943
Tenda FH1206 V1.2.0.88155EN was discovered to contain a stack-based buffer overflow vulnerability via the page parameter at ip/goform/NatStaticSetting...
CVE-2024-34945
Tenda FH1206 V1.2.0.88155EN was discovered to contain a stack-based buffer overflow vulnerability via the PPW parameter at ip/goform/WizardHandle...
CVE-2024-34946
Tenda FH1206 V1.2.0.88155EN was discovered to contain a stack-based buffer overflow vulnerability via the page parameter at ip/goform/DhcpListClient...
CVE-2024-34942
Tenda FH1206 V1.2.0.88155EN was discovered to contain a stack-based buffer overflow vulnerability via the funcpara1 parameter at ip/goform/exeCommand...
Tenda FH1206 安全漏洞
The Tenda FH1206 is a wireless router from Tenda China. The Tenda FH1206 suffers from a buffer overflow vulnerability that originates from the funcpara1 parameter in ip/goform/exeCommand that fails to properly validate the length of the input data, which can be exploited by an attacker to execute...
CVE-2024-34942
Tenda FH1206 router (firmware 1.2.0.8(8155) EN) contains a stack-based buffer overflow in the ip/goform/exeCommand endpoint, triggered by the funcpara1 parameter. This could allow arbitrary code execution or a denial of service. Exploitation status is not provided in the documents; no exploit det...
CVE-2024-34943
CVE-2024-34943 affects Tenda FH1206 router (version 1.2.0.8(8155) EN). The vulnerability is a stack-based buffer overflow in the ip/goform/NatStaticSetting endpoint via the page parameter due to input length validation issues, enabling potential remote code execution or denial of service. Public ...