CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 1CVE-2023-27020
https://notcve.org/view.php?id=CVE-2023-27020
Tenda AC10 US_AC10V4.0si_V16.03.10.13_cn was discovered to contain a stack overflow via the saveParentControlInfo function. This vulnerability allows attackers to cause a Denial of Service (DoS) or execute arbitrary code via a crafted payload. • https://github.com/DrizzlingSun/Tenda/blob/main/AC10/1/1.md • CWE-787: Out-of-bounds Write •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 1CVE-2023-27021
https://notcve.org/view.php?id=CVE-2023-27021
Tenda AC10 US_AC10V4.0si_V16.03.10.13_cn was discovered to contain a stack overflow via the formSetFirewallCfg function. This vulnerability allows attackers to cause a Denial of Service (DoS) or execute arbitrary code via a crafted payload. • https://github.com/DrizzlingSun/Tenda/blob/main/AC10/9/9.md • CWE-787: Out-of-bounds Write •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 1CVE-2023-26976
https://notcve.org/view.php?id=CVE-2023-26976
Tenda AC6 v15.03.05.09_multi was discovered to contain a stack overflow via the ssid parameter in the form_fast_setting_wifi_set function. • https://github.com/Funcy33/Vluninfo_Repo/tree/main/CNVDs/AC6/205_1 • CWE-787: Out-of-bounds Write •
CVSS: 8.8EPSS: 0%CPEs: 2EXPL: 1CVE-2023-27042
https://notcve.org/view.php?id=CVE-2023-27042
Tenda AX3 V16.03.12.11 is vulnerable to Buffer Overflow via /goform/SetFirewallCfg. • https://github.com/hujianjie123/vuln/blob/main/Tenda/SetFirewallCfg/readme.md • CWE-787: Out-of-bounds Write •
CVSS: 7.5EPSS: 3%CPEs: 2EXPL: 1CVE-2023-27079
https://notcve.org/view.php?id=CVE-2023-27079
Command Injection vulnerability found in Tenda G103 v.1.0.05 allows an attacker to obtain sensitive information via a crafted package • https://github.com/B2eFly/Router/blob/main/Tenda/G103/2.md • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •