6 matches found
PT-2024-8701 · Tenda · Tenda Ac6
Name of the Vulnerable Software and Affected Versions: Tenda AC6 version 15.03.05.19 Description: A critical issue affects the function formSetDeviceName of the file /goform/SetOnlineDevName, where the manipulation of the argument devName leads to a stack-based buffer overflow. This can be...
PT-2024-37598 · Tenda · Tenda A301
Name of the Vulnerable Software and Affected Versions: Tenda A301 version 15.13.08.12 Description: A critical issue was found in the function fromSetWirelessRepeat of the file /goform/SetOnlineDevName. The manipulation of the argument devName leads to a stack-based buffer overflow. This issue can...
PT-2024-2265 · Tenda · Tenda Ac18
Name of the Vulnerable Software and Affected Versions: Tenda AC18 version 15.03.05.05 Description: A critical issue affects the formSetDeviceName function of the /goform/SetOnlineDevName file, leading to a stack-based buffer overflow when the devName or mac argument is manipulated. This can be...
PT-2024-1455 · Tenda · Tenda Ac15
Name of the Vulnerable Software and Affected Versions: Tenda A15 version 15.13.07.13 Description: A critical vulnerability has been found in the Web-based Management Interface of Tenda A15. The issue is related to a stack-based buffer overflow caused by the manipulation of the mac argument in the...
CVE-2023-49428
Tenda AX12 V22.03.01.46 has been discovered to contain a command injection vulnerability in the 'mac' parameter at /goform/SetOnlineDevName...
PT-2023-31221 · Tenda · Tenda Ax9
Name of the Vulnerable Software and Affected Versions: Tenda AX9 version V22.03.01.46 Description: A command injection issue has been discovered in the mac parameter at the "/goform/SetOnlineDevName" API endpoint. This allows for potential command injection attacks. Recommendations: For Tenda AX9...