CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 1CVE-2023-25231
https://notcve.org/view.php?id=CVE-2023-25231
Tenda Router W30E V1.0.1.25(633) is vulnerable to Buffer Overflow in function fromRouteStatic via parameters entrys and mitInterface. • https://github.com/Funcy33/Vluninfo_Repo/tree/main/CNVDs/104 • CWE-787: Out-of-bounds Write •
CVSS: 9.8EPSS: 5%CPEs: 10EXPL: 1CVE-2023-23080
https://notcve.org/view.php?id=CVE-2023-23080
Certain Tenda products are vulnerable to command injection. This affects Tenda CP7 Tenda CP7<=V11.10.00.2211041403 and Tenda CP3 v.10 Tenda CP3 v.10<=V20220906024_2025 and Tenda IT7-PCS Tenda IT7-PCS<=V2209020914 and Tenda IT7-LCS Tenda IT7-LCS<=V2209020914 and Tenda IT7-PRS Tenda IT7-PRS<=V2209020908. • https://github.com/fxc233/iot-vul/tree/main/Tenda/IPC • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 1CVE-2023-25234
https://notcve.org/view.php?id=CVE-2023-25234
Tenda AC500 V2.0.1.9(1307) is vulnerable to Buffer Overflow in function fromAddressNat via parameters entrys and mitInterface. • https://github.com/Funcy33/Vluninfo_Repo/tree/main/CNVDs/113_1 • CWE-787: Out-of-bounds Write •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 1CVE-2023-25235
https://notcve.org/view.php?id=CVE-2023-25235
Tenda AC500 V2.0.1.9(1307) is vulnerable to Buffer Overflow in function formOneSsidCfgSet via parameter ssid. • https://github.com/Funcy33/Vluninfo_Repo/tree/main/CNVDs/113_2 • CWE-787: Out-of-bounds Write •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 1CVE-2023-24212
https://notcve.org/view.php?id=CVE-2023-24212
Tenda AX3 V16.03.12.11 was discovered to contain a stack overflow via the timeType function at /goform/SetSysTimeCfg. • https://github.com/Venus-WQLab/bug_report/blob/main/Tenda/CVE-2023-24212.md https://github.com/w0x68y/cve-lists/blob/main/Tenda/vuln/readme.md • CWE-787: Out-of-bounds Write •