Ax12 Firmware Security Vulnerabilities and Issues — Ax12 Firmware CVE List

Lucene search

TendaAx12 Firmware

13 matches found

CVE•added 2022/03/10 5:47 p.m.•90 views

CVE-2022-25556

Tenda AX12 v22.03.01.21 was discovered to contain a stack overflow in the function sub_42E328. This vulnerability allows attackers to cause a Denial of Service (DoS) via the list parameter.

7.8CVSS7.6AI score0.00328EPSS

CVE•added 2022/03/10 5:47 p.m.•84 views

CVE-2022-25561

Tenda AX12 v22.03.01.21 was discovered to contain a stack overflow in the function sub_42DE00. This vulnerability allows attackers to cause a Denial of Service (DoS) via the list parameter.

7.8CVSS7.6AI score0.00328EPSS

CVE•added 2022/03/10 5:47 p.m.•79 views

CVE-2022-25560

Tenda AX12 v22.03.01.21 was discovered to contain a stack overflow in the function sub_4327CC. This vulnerability allows attackers to cause a Denial of Service (DoS) via the list parameter.

7.8CVSS7.6AI score0.00328EPSS

CVE•added 2022/03/10 5:44 p.m.•72 views

CVE-2021-46408

Tenda AX12 v22.03.01.21 was discovered to contain a stack buffer overflow in the function sub_422CE4. This vulnerability allows attackers to cause a Denial of Service (DoS) via the strcpy parameter.

7.8CVSS7.6AI score0.00328EPSS

CVE•added 2022/04/25 4:16 p.m.•63 views

CVE-2022-27375

Tenda AX12 V22.03.01.21_CN was discovered to contain a Cross-Site Request Forgery (CSRF) via the function sub_422168 at /goform/WifiExtraSet.

7.1CVSS6.6AI score0.00101EPSS

CVE•added 2022/02/14 5:15 p.m.•62 views

CVE-2021-45392

A Buffer Overflow vulnerability exists in Tenda Router AX12 V22.03.01.21_CN in the sub_422CE4 function in page /goform/setIPv6Status via the prefixDelegate parameter, which causes a Denial of Service.

7.8CVSS7.5AI score0.03105EPSS

CVE•added 2022/02/16 2:15 p.m.•59 views

CVE-2021-45391

A Buffer Overflow vulnerability exists in Tenda Router AX12 V22.03.01.21_CN in the sub_422CE4 function in the goform/setIPv6Status binary file /usr/sbin/httpd via the conType parameter, which causes a Denial of Service.

7.5CVSS7.5AI score0.01EPSS

CVE•added 2022/04/25 4:16 p.m.•56 views

CVE-2022-27374

Tenda AX12 V22.03.01.21_CN was discovered to contain a Cross-Site Request Forgery (CSRF) via the function sub_42E328 at /goform/SysToolReboot.

7.1CVSS6.6AI score0.00101EPSS

CVE•added 2022/12/12 3:15 p.m.•53 views

CVE-2022-45979

Tenda AX12 v22.03.01.21_CN was discovered to contain a stack overflow via the ssid parameter at /goform/fast_setting_wifi_set .

7.5CVSS7.7AI score0.00084EPSS

CVE•added 2022/05/18 4:15 p.m.•52 views

CVE-2022-28917

Tenda AX12 v22.03.01.21_cn was discovered to contain a stack overflow via the lanIp parameter in /goform/AdvSetLanIp.

7.8CVSS7.7AI score0.00409EPSS

CVE•added 2024/01/10 9:15 a.m.•51 views

CVE-2023-49427

Buffer Overflow vulnerability in Tenda AX12 V22.03.01.46, allows remote attackers to cause a denial of service (DoS) via list parameter in SetNetControlList function.

7.5CVSS7.4AI score0.01061EPSS

CVE•added 2022/02/04 2:15 a.m.•50 views

CVE-2022-24143

Tenda AX3 v16.03.12.10_CN and AX12 22.03.01.2_CN was discovered to contain a stack overflow in the function form_fast_setting_wifi_set. This vulnerability allows attackers to cause a Denial of Service (DoS) via the timeZone parameter.

7.8CVSS7.6AI score0.00328EPSS

CVE•added 2025/03/20 4:15 p.m.•50 views

CVE-2025-29214

Tenda AX12 v22.03.01.46_CN was discovered to contain a stack overflow via the sub_42F69C function at /goform/setMacFilterCfg.

7.5CVSS7.9AI score0.00086EPSS