Tenda Security Vulnerabilities
An issue in the component tpi_systool_handle(0) (/goform/SysToolRestoreSet) of Tenda W6-S v1.0.0.4(510) allows unauthenticated attackers to arbitrarily reboot the device.
7.5CVSS
7.5AI Score
0.001EPSS
Tenda W30E V1.0.1.25(633) was discovered to contain a stack overflow via the cmdinput parameter at /goform/exeCommand.
7.5CVSS
7.7AI Score
0.001EPSS
Tenda W30E v1.0.1.25(633) was discovered to contain a command injection vulnerability via the fileNameMit parameter at /goform/delFileName.
9.8CVSS
9.7AI Score
0.056EPSS
Tenda W30E V1.0.1.25(633) was discovered to contain a stack overflow via the editNameMit parameter at /goform/editFileName.
7.5CVSS
7.7AI Score
0.001EPSS
Tenda W30E V1.0.1.25(633) was discovered to contain a stack overflow via the new_account parameter at /goform/editUserName.
7.5CVSS
7.7AI Score
0.001EPSS
Tenda W30E V1.0.1.25(633) was discovered to contain a stack overflow via the account parameter at /goform/addUserName.
7.5CVSS
7.7AI Score
0.001EPSS
Tenda W30E V1.0.1.25(633) was discovered to contain a stack overflow via the mit_ssid_index parameter at /goform/AdvSetWrlsafeset.
7.5CVSS
7.7AI Score
0.001EPSS
Tenda W30E V1.0.1.25(633) was discovered to contain a stack overflow via the PPPOEPassword parameter at /goform/QuickIndex.
7.5CVSS
7.7AI Score
0.001EPSS
Tenda W30E V1.0.1.25(633) was discovered to contain a stack overflow via the page parameter at /goform/SafeEmailFilter.
7.5CVSS
7.7AI Score
0.001EPSS
Tenda W30E V1.0.1.25(633) was discovered to contain a stack overflow via the page parameter at /goform/P2pListFilter.
7.5CVSS
7.7AI Score
0.001EPSS
Tenda W30E V1.0.1.25(633) was discovered to contain a stack overflow via the page parameter at /goform/webExcptypemanFilter.
7.5CVSS
7.7AI Score
0.001EPSS
Tenda W30E V1.0.1.25(633) was discovered to contain a stack overflow via the entries parameter at /goform/addressNat.
7.5CVSS
7.7AI Score
0.001EPSS
Tenda W30E V1.0.1.25(633) was discovered to contain a stack overflow via the page parameter at /goform/NatStaticSetting.
7.5CVSS
7.7AI Score
0.001EPSS
Tenda W30E V1.0.1.25(633) was discovered to contain a stack overflow via the page parameter at /goform/VirtualSer.
7.5CVSS
7.7AI Score
0.001EPSS
Tenda W30E V1.0.1.25(633) was discovered to contain a stack overflow via the page parameter at /goform/SetIpBind.
7.5CVSS
7.7AI Score
0.001EPSS
Tenda W30E V1.0.1.25(633) was discovered to contain a stack overflow via the Go parameter at /goform/SafeMacFilter.
7.5CVSS
7.7AI Score
0.001EPSS
Tenda W30E V1.0.1.25(633) was discovered to contain a stack overflow via the page parameter at /goform/qossetting.
7.5CVSS
7.7AI Score
0.001EPSS
Tenda W30E V1.0.1.25(633) was discovered to contain a stack overflow via the page parameter at /goform/SafeUrlFilter.
7.5CVSS
7.7AI Score
0.001EPSS
Tenda W30E V1.0.1.25(633) was discovered to contain a stack overflow via the page parameter at /goform/SafeClientFilter.
7.5CVSS
7.7AI Score
0.001EPSS
Tenda W30E V1.0.1.25(633) was discovered to contain a stack overflow via the page parameter at /goform/L7Im.
7.5CVSS
7.7AI Score
0.001EPSS
Tenda W30E V1.0.1.25(633) was discovered to contain a stack overflow via the opttype parameter at /goform/IPSECsave.
7.5CVSS
7.7AI Score
0.001EPSS
Tenda W30E V1.0.1.25(633) was discovered to contain a stack overflow via the downaction parameter at /goform/CertListInfo.
7.5CVSS
7.7AI Score
0.001EPSS
Tenda Tenda AC6V1.0 V15.03.05.19 is affected by buffer overflow. Causes a denial of service (local).
7.5CVSS
7.5AI Score
0.001EPSS
Tenda AC6V1.0 V15.03.05.19 is vulnerable to Buffer Overflow via formSetMacFilterCfg.
7.5CVSS
7.5AI Score
0.001EPSS
Tenda i22 V1.0.0.3(4687) was discovered to contain a buffer overflow via the index parameter in the formWifiMacFilterSet function.
7.5CVSS
7.7AI Score
0.001EPSS
Tenda i22 V1.0.0.3(4687) was discovered to contain a buffer overflow via the list parameter in the formwrlSSIDget function.
7.5CVSS
7.7AI Score
0.001EPSS
Tenda i22 V1.0.0.3(4687) was discovered to contain a buffer overflow via the funcpara1 parameter in the formSetCfm function.
7.5CVSS
7.7AI Score
0.001EPSS
Tenda i22 V1.0.0.3(4687) was discovered to contain a buffer overflow via the list parameter in the formwrlSSIDset function.
7.5CVSS
7.8AI Score
0.001EPSS
Tenda i22 V1.0.0.3(4687) is vulnerable to Cross Site Request Forgery (CSRF) via function fromSysToolRestoreSet.
6.5CVSS
6.6AI Score
0.001EPSS
Tenda i22 V1.0.0.3(4687) is vulnerable to Cross Site Request Forgery (CSRF) via function fromSysToolReboot.
6.5CVSS
6.6AI Score
0.001EPSS
Tenda i22 V1.0.0.3(4687) was discovered to contain a buffer overflow via the index parameter in the formWifiMacFilterGet function.
7.5CVSS
7.7AI Score
0.001EPSS
Tenda i22 V1.0.0.3(4687) was discovered to contain a buffer overflow via the ping1 parameter in the formSetAutoPing function.
7.5CVSS
7.7AI Score
0.001EPSS
Tenda i22 V1.0.0.3(4687) was discovered to contain a buffer overflow via the appData parameter in the formSetAppFilterRule function.
7.5CVSS
7.7AI Score
0.001EPSS
Tenda i22 V1.0.0.3(4687) was discovered to contain a buffer overflow via the formWx3AuthorizeSet function.
7.5CVSS
7.8AI Score
0.001EPSS
Tenda AC6V1.0 V15.03.05.19 is vulnerable to Cross Site Request Forgery (CSRF) via function fromSysToolRestoreSet.
6.5CVSS
6.6AI Score
0.001EPSS
Tenda AC6V1.0 V15.03.05.19 is vulnerable to Cross Site Request Forgery (CSRF) via function fromSysToolReboot.
6.5CVSS
6.6AI Score
0.001EPSS
Buffer Overflow vulnerability in Tenda AX1803 v1.0.0.1_2994 and earlier allows attackers to run arbitrary code via /goform/SetOnlineDevName.
8.8CVSS
8.7AI Score
0.001EPSS
Tenda AX12 V22.03.01.21_CN was found to have a command injection vulnerability via /goform/setMacFilterCfg function.
8.8CVSS
8.8AI Score
0.002EPSS
Tenda AX12 v22.03.01.21_CN was discovered to contain a stack overflow via the ssid parameter at /goform/fast_setting_wifi_set .
7.5CVSS
7.7AI Score
0.001EPSS
Tenda AX12 V22.03.01.21_CN was discovered to contain a Cross-Site Request Forgery (CSRF) via /goform/SysToolRestoreSet .
8.8CVSS
8.8AI Score
0.001EPSS
There is an unauthorized buffer overflow vulnerability in Tenda AX12 v22.03.01.21 _ cn. This vulnerability can cause the web service not to restart or even execute arbitrary code. It is a different vulnerability from CVE-2022-2414.
9.8CVSS
7.9AI Score
0.036EPSS
Tenda W20E V16.01.0.6(3392) is vulnerable to Command injection via cmd_get_ping_output.
7.2CVSS
7.2AI Score
0.002EPSS
7.2CVSS
6.9AI Score
0.001EPSS
Tenda AC15 V15.03.06.23 is vulnerable to Buffer Overflow via function formSetClientState.
7.5CVSS
7.5AI Score
0.001EPSS
Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the mac parameter at /goform/GetParentControlInfo.
7.5CVSS
7.8AI Score
0.001EPSS
Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the deviceId parameter at /goform/addWifiMacFilter.
7.5CVSS
7.8AI Score
0.001EPSS
Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the deviceMac parameter at /goform/addWifiMacFilter.
7.5CVSS
7.8AI Score
0.001EPSS
Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the limitSpeed parameter at /goform/SetClientState.
7.5CVSS
7.8AI Score
0.001EPSS
Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the speed_dir parameter at /goform/SetSpeedWan.
7.5CVSS
7.8AI Score
0.001EPSS
Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the deviceId parameter at /goform/SetClientState.
7.5CVSS
7.8AI Score
0.001EPSS