Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Tenda Subscribe
Total 1328 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-40846 1 Tenda 2 Ac6, Ac6 Firmware 2023-08-29 N/A 9.8 CRITICAL
Tenda AC6 US_AC6V1.0BR_V15.03.05.16_multi_TD01.bin is vulnerable to Buffer Overflow via function sub_90998.
CVE-2023-40901 1 Tenda 2 Ac10v4, Ac10v4 Firmware 2023-08-29 N/A 9.8 CRITICAL
Tenda AC10 v4 US_AC10V4.0si_V16.03.10.13_cn was discovered to contain a stack overflow via parameter macFilterType and parameter deviceList at url /goform/setMacFilterCfg.
CVE-2023-40900 1 Tenda 2 Ac8v4, Ac8v4 Firmware 2023-08-29 N/A 9.8 CRITICAL
Tenda AC8 v4 US_AC8V4.0si_V16.03.34.06_cn was discovered to contain a stack overflow via parameter list at /goform/SetNetControlList.
CVE-2023-40899 1 Tenda 2 Ac8v4, Ac8v4 Firmware 2023-08-29 N/A 9.8 CRITICAL
Tenda AC8 v4 US_AC8V4.0si_V16.03.34.06_cn was discovered to contain a stack overflow via parameter macFilterType and parameter deviceList at /goform/setMacFilterCfg.
CVE-2023-40898 1 Tenda 2 Ac8v4, Ac8v4 Firmware 2023-08-29 N/A 9.8 CRITICAL
Tenda AC8 v4 US_AC8V4.0si_V16.03.34.06_cn was discovered to contain a stack overflow via parameter timeZone at /goform/SetSysTimeCfg.
CVE-2023-40897 1 Tenda 2 Ac8v4, Ac8v4 Firmware 2023-08-29 N/A 9.8 CRITICAL
Tenda AC8 v4 US_AC8V4.0si_V16.03.34.06_cn was discovered to contain a stack overflow via parameter mac at /goform/GetParentControlInfo.
CVE-2023-40896 1 Tenda 2 Ac8v4, Ac8v4 Firmware 2023-08-29 N/A 9.8 CRITICAL
Tenda AC8 v4 US_AC8V4.0si_V16.03.34.06_cn was discovered to contain a stack overflow via parameter list and bindnum at /goform/SetIpMacBind.
CVE-2023-40895 1 Tenda 2 Ac8v4, Ac8v4 Firmware 2023-08-29 N/A 9.8 CRITICAL
Tenda AC8 v4 US_AC8V4.0si_V16.03.34.06_cn was discovered to contain a stack overflow via parameter list at /goform/SetVirtualServerCfg.
CVE-2023-40894 1 Tenda 2 Ac8v4, Ac8v4 Firmware 2023-08-29 N/A 9.8 CRITICAL
Tenda AC8 v4 US_AC8V4.0si_V16.03.34.06_cn was discovered to contain a stack overflow via parameter list at /goform/SetStaticRouteCfg.
CVE-2023-40893 1 Tenda 2 Ac8v4, Ac8v4 Firmware 2023-08-29 N/A 9.8 CRITICAL
Tenda AC8 v4 US_AC8V4.0si_V16.03.34.06_cn was discovered to contain a stack overflow via parameter time at /goform/PowerSaveSet.
CVE-2023-40892 1 Tenda 2 Ac8v4, Ac8v4 Firmware 2023-08-29 N/A 9.8 CRITICAL
Tenda AC8 v4 US_AC8V4.0si_V16.03.34.06_cn was discovered to contain a stack overflow via parameter schedStartTime and schedEndTime at /goform/openSchedWifi.
CVE-2023-40891 1 Tenda 2 Ac8v4, Ac8v4 Firmware 2023-08-29 N/A 9.8 CRITICAL
Tenda AC8 v4 US_AC8V4.0si_V16.03.34.06_cn was discovered to contain a stack overflow via parameter firewallEn at /goform/SetFirewallCfg.
CVE-2023-40800 1 Tenda 2 Ac23, Ac23 Firmware 2023-08-29 N/A 8.8 HIGH
The compare_parentcontrol_time function does not authenticate user input parameters, resulting in a post-authentication stack overflow vulnerability in Tenda AC23 v16.03.07.45_cn.
CVE-2023-40801 1 Tenda 2 Ac23, Ac23 Firmware 2023-08-29 N/A 8.8 HIGH
The sub_451784 function does not validate the parameters entered by the user, resulting in a stack overflow vulnerability in Tenda AC23 v16.03.07.45_cn
CVE-2023-40797 1 Tenda 2 Ac23, Ac23 Firmware 2023-08-29 N/A 8.8 HIGH
In Tenda AC23 v16.03.07.45_cn, the sub_4781A4 function does not validate the parameters entered by the user, resulting in a post-authentication stack overflow vulnerability.
CVE-2023-40802 1 Tenda 2 Ac23, Ac23 Firmware 2023-08-29 N/A 6.5 MEDIUM
The get_parentControl_list_Info function does not verify the parameters entered by the user, causing a post-authentication heap overflow vulnerability in Tenda AC23 v16.03.07.45_cn
CVE-2023-40915 1 Tenda 2 Ax3, Ax3 Firmware 2023-08-29 N/A 7.5 HIGH
Tenda AX3 v16.03.12.11 has a stack buffer overflow vulnerability detected at function form_fast_setting_wifi_set. This vulnerability allows attackers to cause a Denial of Service (DoS) via the ssid parameter.
CVE-2023-40798 1 Tenda 2 Ac23, Ac23 Firmware 2023-08-29 N/A 8.8 HIGH
In Tenda AC23 v16.03.07.45_cn, the formSetIPv6status and formGetWanParameter functions do not authenticate user input parameters, resulting in a post-authentication stack overflow vulnerability.
CVE-2023-40799 1 Tenda 2 Ac23, Ac23 Firmware 2023-08-29 N/A 9.8 CRITICAL
Tenda AC23 Vv16.03.07.45_cn is vulnerable to Buffer Overflow via sub_450A4C function.
CVE-2023-39786 1 Tenda 2 Ac8v4, Ac8v4 Firmware 2023-08-24 N/A 7.5 HIGH
Tenda AC8V4 V16.03.34.06 was discovered to contain a stack overflow via the time parameter in the sscanf function.