Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
tendacn vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2022-38325
Tenda AC15 WiFi Router V15.03.05.19_multi and AC18 WiFi Router V15.03.05.19_multi were discovered to contain a buffer overflow via the filePath parameter at /goform/expandDlnaFile.
Tendacn Ac15 Firmware 15.03.05.19 Multi
Tendacn Ac18 Firmware 15.03.05.19 Multi
1 Github repository
9.8
CVSSv3
CVE-2022-38326
Tenda AC15 WiFi Router V15.03.05.19_multi and AC18 WiFi Router V15.03.05.19_multi were discovered to contain a buffer overflow via the page parameter at /goform/NatStaticSetting.
Tendacn Ac15 Firmware 15.03.05.19 Multi
Tendacn Ac18 Firmware 15.03.05.19 Multi
1 Github repository
9.8
CVSSv3
CVE-2022-31446
Tenda AC18 router V15.03.05.19 and V15.03.05.05 exists to contain a remote code execution (RCE) vulnerability via the Mac parameter at ip/goform/WriteFacMac.
Tendacn Ac18 Firmware 15.03.05.05
Tendacn Ac18 Firmware 15.03.05.19
7.5
CVSSv3
CVE-2021-45993
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a stack overflow in the function formIPMacBindModify. This vulnerability allows malicious users to cause a Denial of Service (DoS) via the IPMacBindRuleIP and IPMacBindRuleMac parameters.
Tendacn G1 Firmware 15.11.0.17\\(9502\\) Cn
Tendacn G3 Firmware 15.11.0.17\\(9502\\) Cn
9.8
CVSSv3
CVE-2022-24171
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a command injection vulnerability in the function formSetPppoeServer. This vulnerability allows malicious users to execute arbitrary commands via the pppoeServerIP, pppoeServerStartIP, and pppoeServerEndIP pa...
Tendacn G1 Firmware 15.11.0.17\\(9502\\) Cn
Tendacn G3 Firmware 15.11.0.17\\(9502\\) Cn
7.5
CVSSv3
CVE-2022-24164
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a stack overflow in the function formSetVirtualSer. This vulnerability allows malicious users to cause a Denial of Service (DoS) via the DnsHijackRule parameter.
Tendacn G1 Firmware 15.11.0.17\\(9502\\) Cn
Tendacn G3 Firmware 15.11.0.17\\(9502\\) Cn
9.8
CVSSv3
CVE-2022-24165
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a command injection vulnerability in the function formSetQvlanList. This vulnerability allows malicious users to execute arbitrary commands via the qvlanIP parameter.
Tendacn G1 Firmware 15.11.0.17\\(9502\\) Cn
Tendacn G3 Firmware 15.11.0.17\\(9502\\) Cn
7.5
CVSSv3
CVE-2022-24166
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a stack overflow in the function formSetSysTime. This vulnerability allows malicious users to cause a Denial of Service (DoS) via the manualTime parameter.
Tendacn G1 Firmware 15.11.0.17\\(9502\\) Cn
Tendacn G3 Firmware 15.11.0.17\\(9502\\) Cn
9.8
CVSSv3
CVE-2022-24167
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a command injection vulnerability in the function formSetDMZ. This vulnerability allows malicious users to execute arbitrary commands via the dmzHost1 parameter.
Tendacn G1 Firmware 15.11.0.17\\(9502\\) Cn
Tendacn G3 Firmware 15.11.0.17\\(9502\\) Cn
9.8
CVSSv3
CVE-2022-24168
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a command injection vulnerability in the function formSetIpGroup. This vulnerability allows malicious users to execute arbitrary commands via the IPGroupStartIP and IPGroupEndIP parameters.
Tendacn G1 Firmware 15.11.0.17\\(9502\\) Cn
Tendacn G3 Firmware 15.11.0.17\\(9502\\) Cn
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4946
CVE-2024-30309
CVE-2024-4761
CVE-2024-30051
type confusion
memory leak
CVE-2024-30293
reflected XSS
CVE-2024-3126
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »