Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Ac10_firmware
(Tenda)Repositories |
Unknown: This might be proprietary software. |
#Vulnerabilities | 56 |
Date | Id | Summary | Products | Score | Patch | Annotated |
---|---|---|---|---|---|---|
2023-06-08 | CVE-2023-34569 | Tenda AC10 v4 US_AC10V4.0si_V16.03.10.13_cn was discovered to contain a stack overflow via parameter list at /goform/SetNetControlList. | Ac10_firmware | 6.7 | ||
2023-06-08 | CVE-2023-34570 | Tenda AC10 v4 US_AC10V4.0si_V16.03.10.13_cn was discovered to contain a stack overflow via parameter devName at /goform/SetOnlineDevName. | Ac10_firmware | 6.7 | ||
2023-06-08 | CVE-2023-34571 | Tenda AC10 v4 US_AC10V4.0si_V16.03.10.13_cn was discovered to contain a stack overflow via parameter shareSpeed at /goform/WifiGuestSet. | Ac10_firmware | 6.7 | ||
2023-09-18 | CVE-2023-42320 | Buffer Overflow vulnerability in Tenda AC10V4 v.US_AC10V4.0si_V16.03.10.13_cn_TDC01 allows a remote attacker to cause a denial of service via the mac parameter in the GetParentControlInfo function. | Ac10_firmware | 9.8 | ||
2023-08-07 | CVE-2023-38933 | Tenda AC6 V2.0 V15.03.06.23, AC7 V1.0 V15.03.06.44, F1203 V2.0.1.6, AC5 V1.0 V15.03.06.28, FH1203 V2.0.1.6 and AC9 V3.0 V15.03.06.42_multi, and FH1205 V2.0.0.7(775) were discovered to contain a stack overflow via the deviceId parameter in the formSetClientState function. | Ac10_firmware, Ac1206_firmware, Ac5_firmware, Ac6_firmware, Ac7_firmware, Ac9_firmware, F1203_firmware, Fh1203_firmware, Fh1205_firmware | 9.8 | ||
2023-08-07 | CVE-2023-38931 | Tenda AC10 V1.0 V15.03.06.23, AC1206 V15.03.06.23, AC8 v4 V16.03.34.06, AC6 V2.0 V15.03.06.23, AC7 V1.0 V15.03.06.44, F1203 V2.0.1.6, AC5 V1.0 V15.03.06.28, AC10 v4.0 V16.03.10.13 and FH1203 V2.0.1.6 were discovered to contain a stack overflow via the list parameter in the setaccount function. | Ac10_firmware, Ac1206_firmware, Ac5_firmware, Ac6_firmware, Ac7_firmware, Ac8_firmware, F1203_firmware, Fh1203_firmware | 9.8 | ||
2023-08-07 | CVE-2023-38936 | Tenda AC10 V1.0 V15.03.06.23, AC1206 V15.03.06.23, AC6 V2.0 V15.03.06.23, AC7 V1.0 V15.03.06.44, AC5 V1.0 V15.03.06.28, FH1203 V2.0.1.6, AC9 V3.0 V15.03.06.42_multi and FH1205 V2.0.0.7(775) were discovered to contain a stack overflow via the speed_dir parameter in the formSetSpeedWan function. | Ac10_firmware, Ac1206_firmware, Ac5_firmware, Ac6_firmware, Ac7_firmware, Ac9_firmware, F1203_firmware, Fh1203_firmware, Fh1205_firmware | 9.8 | ||
2023-08-07 | CVE-2023-38935 | Tenda AC1206 V15.03.06.23, AC8 V4 V16.03.34.06, AC5 V1.0 V15.03.06.28, AC10 v4.0 V16.03.10.13 and AC9 V3.0 V15.03.06.42_multi were discovered to contain a tack overflow via the list parameter in the formSetQosBand function. | Ac10_firmware, Ac1206_firmware, Ac5_firmware, Ac8_firmware, Ac9_firmware | 9.8 | ||
2023-08-07 | CVE-2023-38937 | Tenda AC10 V1.0 V15.03.06.23, AC1206 V15.03.06.23, AC8 v4 V16.03.34.06, AC6 V2.0 V15.03.06.23, AC7 V1.0 V15.03.06.44, AC5 V1.0 V15.03.06.28, AC9 V3.0 V15.03.06.42_multi and AC10 v4.0 V16.03.10.13 were discovered to contain a stack overflow via the list parameter in the formSetVirtualSer function. | Ac10_firmware, Ac1206_firmware, Ac5_firmware, Ac6_firmware, Ac7_firmware, Ac8_firmware, Ac9_firmware | 9.8 | ||
2022-07-07 | CVE-2022-32054 | Tenda AC10 US_AC10V1.0RTL_V15.03.06.26_multi_TD01 was discovered to contain a remote code execution (RCE) vulnerability via the lanIp parameter. | Ac10_firmware | 9.8 |