Tenda AC1200 authorization error vulnerability

Tenda AC1200 is a wireless router from Tenda, China. Tenda AC1200 Router Model W15Ev2 V15.11.0.101576 is vulnerable to an authorization error. An authenticated attacker can use this vulnerability to read the router's syslog.log file, which contains the MD5 password for the administrator user...

CVE-2022-41396

Tenda AC1200 Router Model W15Ev2 V15.11.0.101576 was discovered to contain multiple command injection vulnerabilities in the function setIPsecTunnelList via the IPsecLocalNet and IPsecRemoteNet parameters...

CVE-2022-42058

Tenda AC1200 Router Model W15Ev2 V15.11.0.101576 was discovered to contain a stack overflow via the setRemoteWebManage function. This vulnerability allows attackers to cause a Denial of Service DoS via crafted overflow data...

PT-2022-25842 · Tenda · Tenda Ac1200 Router

Name of the Vulnerable Software and Affected Versions: Tenda AC1200 Router Model W15Ev2 version V15.11.0.101576 Description: The issue is related to a command injection vulnerability. This vulnerability can be exploited via the dmzHost parameter in the setDMZ function. Recommendations: For Tenda...