CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-2023-34566
https://notcve.org/view.php?id=CVE-2023-34566
08 Jun 2023 — Tenda AC10 v4 US_AC10V4.0si_V16.03.10.13_cn was discovered to contain a stack overflow via parameter time at /goform/saveParentControlInfo. • https://hackmd.io/%400dayResearch/rk8hQf5rh • CWE-787: Out-of-bounds Write •
CVSS: 6.7EPSS: 0%CPEs: 2EXPL: 0CVE-2023-34567
https://notcve.org/view.php?id=CVE-2023-34567
08 Jun 2023 — Tenda AC10 v4 US_AC10V4.0si_V16.03.10.13_cn was discovered to contain a stack overflow via parameter list at /goform/SetVirtualServerCfg. • https://hackmd.io/%400dayResearch/H1xUqzfHh • CWE-787: Out-of-bounds Write •
CVSS: 6.7EPSS: 0%CPEs: 2EXPL: 0CVE-2023-34568
https://notcve.org/view.php?id=CVE-2023-34568
08 Jun 2023 — Tenda AC10 v4 US_AC10V4.0si_V16.03.10.13_cn was discovered to contain a stack overflow via parameter time at /goform/PowerSaveSet. • https://hackmd.io/%400dayResearch/ryR8IzMH2 • CWE-787: Out-of-bounds Write •
CVSS: 6.7EPSS: 0%CPEs: 2EXPL: 0CVE-2023-34569
https://notcve.org/view.php?id=CVE-2023-34569
08 Jun 2023 — Tenda AC10 v4 US_AC10V4.0si_V16.03.10.13_cn was discovered to contain a stack overflow via parameter list at /goform/SetNetControlList. • https://hackmd.io/%400dayResearch/HymuzffSh • CWE-787: Out-of-bounds Write •
CVSS: 6.7EPSS: 0%CPEs: 2EXPL: 0CVE-2023-34570
https://notcve.org/view.php?id=CVE-2023-34570
08 Jun 2023 — Tenda AC10 v4 US_AC10V4.0si_V16.03.10.13_cn was discovered to contain a stack overflow via parameter devName at /goform/SetOnlineDevName. • https://hackmd.io/%400dayResearch/S1eI91_l2 • CWE-787: Out-of-bounds Write •
CVSS: 6.7EPSS: 0%CPEs: 2EXPL: 0CVE-2023-34571
https://notcve.org/view.php?id=CVE-2023-34571
08 Jun 2023 — Tenda AC10 v4 US_AC10V4.0si_V16.03.10.13_cn was discovered to contain a stack overflow via parameter shareSpeed at /goform/WifiGuestSet. • https://hackmd.io/%400dayResearch/S1GcUxzSn • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 1CVE-2018-14559
https://notcve.org/view.php?id=CVE-2018-14559
25 Apr 2019 — An issue was discovered on Tenda AC7 devices with firmware through V15.03.06.44_CN(AC7), AC9 devices with firmware through V15.03.05.19(6318)_CN(AC9), and AC10 devices with firmware through V15.03.06.23_CN(AC10). A buffer overflow vulnerability exists in the router's web server (httpd). When processing the list parameters for a post request, the value is directly written with sprintf to a local variable placed on the stack, which overrides the return address of the function, causing a buffer overflow. Se de... • https://github.com/zsjevilhex/iot/blob/master/route/tenda/tenda-02/Tenda.md • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 1CVE-2018-14557
https://notcve.org/view.php?id=CVE-2018-14557
25 Apr 2019 — An issue was discovered on Tenda AC7 devices with firmware through V15.03.06.44_CN(AC7), AC9 devices with firmware through V15.03.05.19(6318)_CN(AC9), and AC10 devices with firmware through V15.03.06.23_CN(AC10). A buffer overflow vulnerability exists in the router's web server (httpd). When processing the page parameters for a post request, the value is directly written with sprintf to a local variable placed on the stack, which overrides the return address of the function, a causing buffer overflow. Se de... • https://github.com/zsjevilhex/iot/blob/master/route/tenda/tenda-03/Tenda.md • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 67%CPEs: 6EXPL: 1CVE-2018-14558 – Tenda AC7, AC9, and AC10 Routers Command Injection Vulnerability
https://notcve.org/view.php?id=CVE-2018-14558
30 Oct 2018 — An issue was discovered on Tenda AC7 devices with firmware through V15.03.06.44_CN(AC7), AC9 devices with firmware through V15.03.05.19(6318)_CN(AC9), and AC10 devices with firmware through V15.03.06.23_CN(AC10). A command Injection vulnerability allows attackers to execute arbitrary OS commands via a crafted goform/setUsbUnload request. This occurs because the "formsetUsbUnload" function executes a dosystemCmd function with untrusted input. Se ha descubierto un problema en dispositivos Tenda AC7 con firmwa... • https://github.com/zsjevilhex/iot/blob/master/route/tenda/tenda-01/Tenda.md • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 9.0EPSS: 12%CPEs: 4EXPL: 1CVE-2018-16334
https://notcve.org/view.php?id=CVE-2018-16334
02 Sep 2018 — An issue was discovered on Tenda AC9 V15.03.05.19(6318)_CN and AC10 V15.03.06.23_CN devices. The mac parameter in a POST request is used directly in a doSystemCmd call, causing OS command injection. "Se ha descubierto un problema en dispositivos Tenda AC9 V15.03.05.19(6318)_CN y AC10 V15.03.06.23_CN. El parámetro mac en una petición POST se emplea directamente en una llamada doSystemCmd, provocando la inyección de comandos del sistema operativo." • https://github.com/zsjevilhex/iot/blob/master/route/tenda/tenda-04/tenda.md • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •