Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
tendacn vulnerabilities and exploits
(subscribe to this query)
890
VMScore
CVE-2018-5768
A remote, unauthenticated attacker can gain remote code execution on the the Tenda AC15 router with a specially crafted password parameter for the COOKIE header.
Tendacn Ac15 Firmware -
605
VMScore
CVE-2020-24987
Tenda AC18 Router through V15.03.05.05_EN and through V15.03.05.19(6318) CN devices could cause a remote code execution due to incorrect authentication handling of vulnerable logincheck() function in /usr/lib/lua/ngx_authserver/ngx_wdas.lua file if the administrator UI Interface ...
Tendacn Ac18 Firmware
355
VMScore
CVE-2018-14497
Tenda D152 ADSL routers allow XSS via a crafted SSID.
Tendacn D152 Firmware -
1 EDB exploit
668
VMScore
CVE-2018-7561
Stack-based Buffer Overflow in httpd on Tenda AC9 devices V15.03.05.14_EN allows remote malicious users to cause a denial of service or possibly have unspecified other impact.
Tendacn Ac9 Firmware 15.03.05.14 En
578
VMScore
CVE-2020-28093
On Tenda AC1200 (Model AC6) 15.03.06.51_multi devices, admin, support, user, and nobody have a password of 1234.
Tendacn Ac1200 Firmware 15.03.06.51
1 Github repository
NA
CVE-2022-40853
Tenda AC15 router V15.03.05.19 contains a stack overflow via the list parameter at /goform/fast_setting_wifi_set
Tendacn Ac15 Firmware 15.03.05.19
NA
CVE-2022-40860
Tenda AC15 router V15.03.05.19 contains a stack overflow vulnerability in the function formSetQosBand->FUN_0007dd20 with request /goform/SetNetControlList
Tendacn Ac15 Firmware 15.03.05.19
NA
CVE-2024-24488
An issue in Shenzen Tenda Technology CP3V2.0 V11.10.00.2311090948 allows a local malicious user to obtain sensitive information via the password component.
Tendacn Cp3 Firmware 11.10.00.2311090948
1 Github repository
578
VMScore
CVE-2020-20746
A stack-based buffer overflow in the httpd server on Tenda AC9 V15.03.06.60_EN allows remote malicious users to execute arbitrary code or cause a denial of service (DoS) via a crafted POST request to /goform/SetStaticRouteCfg.
Tendacn Ac9 Firmware 15.03.06.60 En
668
VMScore
CVE-2021-45401
A Command injection vulnerability exists in Tenda AC10U AC1200 Smart Dual-band Wireless Router AC10U V1.0 Firmware V15.03.06.49_multi via the setUsbUnload functionality. The vulnerability is caused because the client controlled "deviceName" value is passed directly to t...
Tendacn Ac10u Firmware 15.03.06.49 Multi
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »