CVSS: 8.0EPSS: 0%CPEs: 1EXPL: 0CVE-2024-30634
https://notcve.org/view.php?id=CVE-2024-30634
29 Mar 2024 — Tenda F1202 v1.2.0.20(408) has a stack overflow vulnerability via the mitInterface parameter in the fromAddressNat function. Tenda F1202 v1.2.0.20(408) tiene una vulnerabilidad de desbordamiento de la región stack de la memoria a través del parámetro mitInterface en la función fromAddressNat. • https://github.com/abcdefg-png/IoT-vulnerable/blob/main/Tenda/F/F1202/fromAddressNat_mitInterface.md • CWE-121: Stack-based Buffer Overflow •
CVSS: 8.8EPSS: 4%CPEs: 1EXPL: 0CVE-2024-30637
https://notcve.org/view.php?id=CVE-2024-30637
29 Mar 2024 — Tenda F1202 v1.2.0.20(408) has a command injection vulnerablility in the formWriteFacMac function in the mac parameter. Tenda F1202 v1.2.0.20(408) tiene una vulnerabilidad de inyección de comandos en la función formWriteFacMac en el parámetro mac. • https://github.com/abcdefg-png/IoT-vulnerable/blob/main/Tenda/F/F1202/formWriteFacMac.md • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-30638
https://notcve.org/view.php?id=CVE-2024-30638
29 Mar 2024 — Tenda F1202 v1.2.0.20(408) has a stack overflow vulnerability via the entrys parameter in the fromAddressNat function. Tenda F1202 v1.2.0.20(408) tiene una vulnerabilidad de desbordamiento de la región stack de la memoria a través del parámetro de entradas en la función fromAddressNat. • https://github.com/abcdefg-png/IoT-vulnerable/blob/main/Tenda/F/F1202/fromAddressNat_entrys.md • CWE-121: Stack-based Buffer Overflow •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-30639
https://notcve.org/view.php?id=CVE-2024-30639
29 Mar 2024 — Tenda F1202 v1.2.0.20(408) has a stack overflow vulnerability in the page parameter of fromAddressNat function. Tenda F1202 v1.2.0.20(408) tiene una vulnerabilidad de desbordamiento de la región stack de la memoria en el parámetro de página de la función fromAddressNat. • https://github.com/abcdefg-png/IoT-vulnerable/blob/main/Tenda/F/F1202/fromAddressNat_page.md • CWE-121: Stack-based Buffer Overflow •
CVSS: 10.0EPSS: 0%CPEs: 8EXPL: 1CVE-2023-38932
https://notcve.org/view.php?id=CVE-2023-38932
07 Aug 2023 — Tenda F1202 V1.2.0.9, PA202 V1.1.2.5, PW201A V1.1.2.5 and FH1202 V1.2.0.9 were discovered to contain a stack overflow via the page parameter in the SafeEmailFilter function. • https://github.com/FirmRec/IoT-Vulns/tree/main/tenda/formSafeEmailFilter • CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 8EXPL: 1CVE-2023-38938
https://notcve.org/view.php?id=CVE-2023-38938
07 Aug 2023 — Tenda F1202 V1.2.0.9, PA202 V1.1.2.5, PW201A V1.1.2.5 and FH1202 V1.2.0.9 were discovered to contain a stack overflow via the page parameter at /L7Im. • https://github.com/FirmRec/IoT-Vulns/tree/main/tenda/frmL7ImForm • CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 4EXPL: 1CVE-2023-38939
https://notcve.org/view.php?id=CVE-2023-38939
07 Aug 2023 — Tenda F1202 V1.2.0.9 and FH1202 V1.2.0.9 were discovered to contain a stack overflow via the mit_ssid parameter in the formWrlsafeset function. • https://github.com/FirmRec/IoT-Vulns/tree/main/tenda/formWrlsafeset • CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 10EXPL: 1CVE-2023-37714
https://notcve.org/view.php?id=CVE-2023-37714
14 Jul 2023 — Tenda F1202 V1.0BR_V1.2.0.20(408), FH1202_V1.2.0.19_EN were discovered to contain a stack overflow in the page parameter in the function fromRouteStatic. • https://github.com/FirmRec/IoT-Vulns/blob/main/tenda/fromRouteStatic/report.md • CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 6EXPL: 1CVE-2023-37715
https://notcve.org/view.php?id=CVE-2023-37715
14 Jul 2023 — Tenda F1202 V1.0BR_V1.2.0.20(408), FH1202_V1.2.0.19_EN were discovered to contain a stack overflow in the page parameter in the function frmL7ProtForm. • https://github.com/FirmRec/IoT-Vulns/blob/main/tenda/fmL7ProtForm/reprot.md • CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 16EXPL: 1CVE-2023-37716
https://notcve.org/view.php?id=CVE-2023-37716
14 Jul 2023 — Tenda F1202 V1.0BR_V1.2.0.20(408) and FH1202_V1.2.0.19_EN, AC10 V1.0, AC1206 V1.0, AC7 V1.0, AC5 V1.0, and AC9 V3.0 were discovered to contain a stack overflow in the page parameter in the function fromNatStaticSetting. • https://github.com/FirmRec/IoT-Vulns/blob/main/tenda/fromNatStaticSetting/report.md • CWE-787: Out-of-bounds Write •