22 matches found
CVE-2022-25438
Tenda AC9 v15.03.2.21 was discovered to contain a remote command execution RCE vulnerability via the SetIPTVCfg function...
CVE-2022-25435
Tenda AC9 v15.03.2.21 was discovered to contain a stack overflow via the list parameter in the SetStaticRoutecfg function...
CVE-2022-25427
Tenda AC9 v15.03.2.21 was discovered to contain a stack overflow via the schedendtime parameter in the openSchedWifi function...
CVE-2022-25428
Tenda AC9 v15.03.2.21 was discovered to contain a stack overflow via the deviceId parameter in the saveparentcontrolinfo function...
Stack overflow
Tenda AC9 v15.03.2.21 was discovered to contain a stack overflow via the ntpserver parameter in the SetSysTimeCfg function...
Command injection
Tenda AC9 v15.03.2.21 was discovered to contain a remote command execution RCE vulnerability via the SetIPTVCfg function...
Stack overflow
Tenda AC9 v15.03.2.21 was discovered to contain a stack overflow via the list parameter in the SetIpMacBind function...
Stack overflow
Tenda AC9 v15.03.2.21 was discovered to contain a stack overflow via the urls parameter in the saveparentcontrolinfo function...
Stack overflow
Tenda AC9 v15.03.2.21 was discovered to contain a stack overflow via the list parameter in the SetVirtualServerCfg function...
Command injection
Tenda AC9 v15.03.2.21 was discovered to contain a remote command execution RCE vulnerability via the vlanid parameter in the SetIPTVCfg function...
Stack overflow
Tenda AC9 v15.03.2.21 was discovered to contain a stack overflow via the deviceId parameter in the saveparentcontrolinfo function...
Stack overflow
Tenda AC9 v15.03.2.21 was discovered to contain a stack overflow via the schedendtime parameter in the openSchedWifi function...
Stack overflow
Tenda AC9 v15.03.2.21 was discovered to contain a stack overflow via the list parameter in the SetStaticRoutecfg function...
CVE-2022-25438
Tenda AC9 v15.03.2.21 was discovered to contain a remote command execution RCE vulnerability via the SetIPTVCfg function...
CVE-2022-25438
Multiple connected sources (Red Hat, CNVD, CNNVD, PRION, CVE databases) corroborate CVE-2022-25438 as a remote command execution/command-injection vulnerability in Tenda AC9 v15.03.2.21, exploited via the SetIPTVCfg function. Affected component: SetIPTVCfg handling in Tenda AC9 firmware. Root cau...
CVE-2022-25435
CVE-2022-25435 affects Tenda AC9, specifically v15.03.2.21. The vulnerability is a stack overflow in the SetStaticRoutecfg function exposed via the list parameter, which can lead to arbitrary command execution as described across multiple feeds. The connected documents consistently identify the a...
CVE-2022-25435
Tenda AC9 v15.03.2.21 was discovered to contain a stack overflow via the list parameter in the SetStaticRoutecfg function...
CVE-2022-25434
Tenda AC9 v15.03.2.21 was discovered to contain a stack overflow via the firewallen parameter in the SetFirewallCfg function...
CVE-2022-25433
Tenda AC9 v15.03.2.21 was discovered to contain a stack overflow via the urls parameter in the saveparentcontrolinfo function...
CVE-2022-25428
Tenda AC9 v15.03.2.21 was discovered to contain a stack overflow via the deviceId parameter in the saveparentcontrolinfo function...