Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
tendacn vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2022-40864
Tenda AC15 and AC18 routers V15.03.05.19 contain stack overflow vulnerabilities in the function setSmartPowerManagement with the request /goform/PowerSaveSet
Tendacn Ac15 Firmware 15.03.05.19
Tendacn Ac18 Firmware 15.03.05.19
9.8
CVSSv3
CVE-2022-40865
Tenda AC15 and AC18 routers V15.03.05.19 contain heap overflow vulnerabilities in the function setSchedWifi with the request /goform/openSchedWifi/
Tendacn Ac15 Firmware 15.03.05.19
Tendacn Ac18 Firmware 15.03.05.19
9.8
CVSSv3
CVE-2022-40869
Tenda AC15 and AC18 routers V15.03.05.19 contain stack overflow vulnerabilities in the function fromDhcpListClient with a combined parameter "list*" ("%s%d","list").
Tendacn Ac15 Firmware 15.03.05.19
Tendacn Ac18 Firmware 15.03.05.19
7.5
CVSSv3
CVE-2022-24166
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a stack overflow in the function formSetSysTime. This vulnerability allows malicious users to cause a Denial of Service (DoS) via the manualTime parameter.
Tendacn G1 Firmware 15.11.0.17\\(9502\\) Cn
Tendacn G3 Firmware 15.11.0.17\\(9502\\) Cn
9.8
CVSSv3
CVE-2022-24167
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a command injection vulnerability in the function formSetDMZ. This vulnerability allows malicious users to execute arbitrary commands via the dmzHost1 parameter.
Tendacn G1 Firmware 15.11.0.17\\(9502\\) Cn
Tendacn G3 Firmware 15.11.0.17\\(9502\\) Cn
9.8
CVSSv3
CVE-2022-24168
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a command injection vulnerability in the function formSetIpGroup. This vulnerability allows malicious users to execute arbitrary commands via the IPGroupStartIP and IPGroupEndIP parameters.
Tendacn G1 Firmware 15.11.0.17\\(9502\\) Cn
Tendacn G3 Firmware 15.11.0.17\\(9502\\) Cn
7.5
CVSSv3
CVE-2022-24169
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a stack overflow in the function formIPMacBindAdd. This vulnerability allows malicious users to cause a Denial of Service (DoS) via the IPMacBindRule parameter.
Tendacn G1 Firmware 15.11.0.17\\(9502\\) Cn
Tendacn G3 Firmware 15.11.0.17\\(9502\\) Cn
9.8
CVSSv3
CVE-2022-24170
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a command injection vulnerability in the function formSetIpSecTunnel. This vulnerability allows malicious users to execute arbitrary commands via the IPsecLocalNet and IPsecRemoteNet parameters.
Tendacn G1 Firmware 15.11.0.17\\(9502\\) Cn
Tendacn G3 Firmware 15.11.0.17\\(9502\\) Cn
9.8
CVSSv3
CVE-2022-24171
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a command injection vulnerability in the function formSetPppoeServer. This vulnerability allows malicious users to execute arbitrary commands via the pppoeServerIP, pppoeServerStartIP, and pppoeServerEndIP pa...
Tendacn G1 Firmware 15.11.0.17\\(9502\\) Cn
Tendacn G3 Firmware 15.11.0.17\\(9502\\) Cn
7.5
CVSSv3
CVE-2022-24172
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a stack overflow in the function formAddDhcpBindRule. This vulnerability allows malicious users to cause a Denial of Service (DoS) via the addDhcpRules parameter.
Tendacn G1 Firmware 15.11.0.17\\(9502\\) Cn
Tendacn G3 Firmware 15.11.0.17\\(9502\\) Cn
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48654
CVE-2024-2757
authentication bypass
CVE-2024-3194
CVE-2024-33640
CVE-2024-21111
dos
insecure direct object reference
CVE-2024-21345
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »