M3 Firmware Security Vulnerabilities and Issues — M3 Firmware CVE List

Lucene search

TendaM3 Firmware

18 matches found

CVE•added 2022/07/01 6:15 p.m.•70 views

CVE-2022-32036

Tenda M3 V1.0.0.12 was discovered to contain multiple stack overflow vulnerabilities via the ssidList, storeName, and trademark parameters in the function formSetStoreWeb.

7.8CVSS7.8AI score0.00385EPSS

CVE•added 2022/07/01 6:15 p.m.•66 views

CVE-2022-32041

Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the function formGetPassengerAnalyseData.

7.5CVSS7.7AI score0.00336EPSS

CVE•added 2022/07/01 6:15 p.m.•64 views

CVE-2022-32039

Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the listN parameter in the function fromDhcpListClient.

7.5CVSS7.7AI score0.00336EPSS

CVE•added 2022/07/01 6:15 p.m.•62 views

CVE-2022-32037

Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the function formSetAPCfg.

7.5CVSS7.7AI score0.00336EPSS

CVE•added 2022/07/01 6:15 p.m.•62 views

CVE-2022-32040

Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the function formSetCfm.

7.5CVSS7.7AI score0.00336EPSS

CVE•added 2022/07/01 6:15 p.m.•61 views

CVE-2022-32035

Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the function formMasterMng.

7.8CVSS7.7AI score0.0669EPSS

CVE•added 2022/07/01 6:15 p.m.•54 views

CVE-2022-32043

Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the function formSetAccessCodeInfo.

7.5CVSS7.7AI score0.00336EPSS

CVE•added 2022/08/28 5:15 p.m.•50 views

CVE-2022-38566

Tenda M3 V1.0.0.12(4856) was discovered to contain a heap buffer overflow vulnerability in the function formEmailTest. This vulnerability allows attackers to cause a Denial of Service (DoS) via the mailname parameter.

7.5CVSS7.6AI score0.0013EPSS

CVE•added 2022/07/01 6:15 p.m.•48 views

CVE-2022-32034

Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the items parameter in the function formdelMasteraclist.

7.8CVSS7.7AI score0.00394EPSS

CVE•added 2022/08/28 5:15 p.m.•48 views

CVE-2022-38567

Tenda M3 V1.0.0.12(4856) was discovered to contain a stack overflow vulnerability in the function formSetAdConfigInfo. This vulnerability allows attackers to cause a Denial of Service (DoS) via the authIPs parameter.

7.5CVSS7.5AI score0.00162EPSS

CVE•added 2022/08/28 5:15 p.m.•46 views

CVE-2022-38562

Tenda M3 V1.0.0.12(4856) was discovered to contain a heap buffer overflow vulnerability in the function formSetFixTools. This vulnerability allows attackers to cause a Denial of Service (DoS) via the lan parameter.

7.5CVSS7.6AI score0.0013EPSS

CVE•added 2022/08/28 5:15 p.m.•44 views

CVE-2022-38570

Tenda M3 V1.0.0.12(4856) was discovered to contain a stack overflow in the function formDelPushedAd. This vulnerability allows attackers to cause a Denial of Service (DoS) via the adPushUID parameter.

7.5CVSS7.6AI score0.0013EPSS

CVE•added 2022/08/28 5:15 p.m.•43 views

CVE-2022-38563

7.5CVSS7.6AI score0.0013EPSS

CVE•added 2022/08/28 5:15 p.m.•43 views

CVE-2022-38569

Tenda M3 V1.0.0.12(4856) was discovered to contain a stack overflow in the function formDelAd.

7.5CVSS7.7AI score0.00147EPSS

CVE•added 2022/08/28 5:15 p.m.•41 views

CVE-2022-38564

Tenda M3 V1.0.0.12(4856) was discovered to contain a buffer overflow vulnerability in the function formSetPicListItem. This vulnerability allows attackers to cause a Denial of Service (DoS) via the adItemUID parameter.

7.5CVSS7.6AI score0.0013EPSS

CVE•added 2022/08/28 5:15 p.m.•40 views

CVE-2022-38565

7.5CVSS7.6AI score0.0013EPSS

CVE•added 2022/08/28 5:15 p.m.•40 views

CVE-2022-38568

7.5CVSS7.6AI score0.0013EPSS

CVE•added 2022/08/28 5:15 p.m.•40 views

CVE-2022-38571

Tenda M3 V1.0.0.12(4856) was discovered to contain a buffer overflow in the function formSetGuideListItem.

7.5CVSS7.8AI score0.00118EPSS