CVE-2024-30637

CVE-2024-30637 affects Tenda F1202, v1.2.0.20(408). The vulnerability is a command injection in the formWriteFacMac function via the mac parameter, potentially allowing remote command execution. Red Hat/CNVD/CNNVD entries corroborate the issue in the same firmware line and reference the /goform/W...

CVE-2024-30636

Tenda F1202 v1.2.0.20408 has a stack overflow vulnerability via the PPPOEPassword parameter in the formQuickIndex function...

CVE-2024-30639

Tenda F1202 v1.2.0.20408 has a stack overflow vulnerability in the page parameter of fromAddressNat function...

Stack overflow

Tenda F1202 V1.0BRV1.2.0.20408, FH1202V1.2.0.19EN were discovered to contain a stack overflow in the page parameter in the function fromP2pListFilter...

CVE-2023-37722

CVE-2023-37722 concerns a stack overflow in the Tenda F1202/FH1202 devices caused by the page parameter in the function fromSafeUrlFilter. Affected: Tenda F1202 V1.0BR_V1.2.0.20(408) and Tenda FH1202_V1.2.0.19_EN. Impact per sources: confidentiality, integrity, and availability are potentially af...

CVE-2023-37714

CVE-2023-37714 affects Tenda F1202 devices (V1.0BR_V1.2.0.20(408), FH1202_V1.2.0.19_EN). The root cause is a stack overflow in the page parameter of the function fromRouteStatic. This has been reported with a critical (CVSS v3.1: 9.8) impact, indicating potential remote code execution or device c...

Stack overflow

Tenda AC1206 V15.03.06.23, F1202 V1.2.0.20408, and FH1202 V1.2.0.20408 were discovered to contain a stack overflow in the page parameter in the fromSetIpBind function...

CVE-2023-37712

CVE-2023-37712 affects Tenda AC1206 (v15.03.06.23) and Tenda F1202/FH1202 (v1.2.0.20(408)). The issue is a stack overflow in the page parameter of the fromSetIpBind function in the firmware. The vulnerability can lead to remote code execution with high impact on confidentiality, integrity, and av...