CVE-2023-27076
https://notcve.org/view.php?id=CVE-2023-27076
Command injection vulnerability found in Tenda G103 v.1.0.0.5 allows attacker to execute arbitrary code via a the language parameter. • https://github.com/B2eFly/Router/blob/main/Tenda/G103/1.md • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVE-2023-25210
https://notcve.org/view.php?id=CVE-2023-25210
Tenda AC5 US_AC5V1.0RTL_V15.03.06.28 was discovered to contain a stack overflow via the fromSetSysTime function. This vulnerability allows attackers to cause a Denial of Service (DoS) or execute arbitrary code via a crafted payload. • https://github.com/DrizzlingSun/Tenda/blob/main/AC5/1/1.md • CWE-787: Out-of-bounds Write •
CVE-2023-25211
https://notcve.org/view.php?id=CVE-2023-25211
Tenda AC5 US_AC5V1.0RTL_V15.03.06.28 was discovered to contain a stack overflow via the R7WebsSecurityHandler function. This vulnerability allows attackers to cause a Denial of Service (DoS) or execute arbitrary code via a crafted payload. • https://github.com/DrizzlingSun/Tenda/blob/main/AC5/2/2.md • CWE-787: Out-of-bounds Write •
CVE-2023-25212
https://notcve.org/view.php?id=CVE-2023-25212
Tenda AC5 US_AC5V1.0RTL_V15.03.06.28 was discovered to contain a stack overflow via the fromSetWirelessRepeat function. This vulnerability allows attackers to cause a Denial of Service (DoS) or execute arbitrary code via a crafted payload. • https://github.com/DrizzlingSun/Tenda/blob/main/AC5/6/6.md • CWE-787: Out-of-bounds Write •
CVE-2023-25213
https://notcve.org/view.php?id=CVE-2023-25213
Tenda AC5 US_AC5V1.0RTL_V15.03.06.28 was discovered to contain a stack overflow via the check_param_changed function. This vulnerability allows attackers to cause a Denial of Service (DoS) or execute arbitrary code via a crafted payload. • https://github.com/DrizzlingSun/Tenda/blob/main/AC5/5/5.md • CWE-787: Out-of-bounds Write •