Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Ac9_firmware
(Tenda)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 60 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2022-05-24 | CVE-2021-42659 | There is a buffer overflow vulnerability in the Web server httpd of the router in Tenda router devices such as Tenda AC9 V1.0 V15.03.02.19(6318) and Tenda AC9 V3.0 V15.03.06.42_multi. When setting the virtual service, the httpd program will crash and exit when the super-long list parameter occurs. | Ac9_firmware | 6.5 | ||
| 2022-08-16 | CVE-2022-36273 | Tenda AC9 V15.03.2.21_cn is vulnerable to command injection via goform/SetSysTimeCfg. | Ac9_firmware | 9.8 | ||
| 2022-08-31 | CVE-2022-36568 | Tenda AC9 V15.03.05.19 was discovered to contain a stack overflow via the list parameter at /goform/setPptpUserList. | Ac9_firmware | 8.8 | ||
| 2022-08-31 | CVE-2022-36569 | Tenda AC9 V15.03.05.19 was discovered to contain a stack overflow via the deviceList parameter at /goform/setMacFilterCfg. | Ac9_firmware | 8.8 | ||
| 2022-08-31 | CVE-2022-36570 | Tenda AC9 V15.03.05.19 was discovered to contain a stack overflow via the time parameter at /goform/SetLEDCfg. | Ac9_firmware | 7.2 | ||
| 2022-08-31 | CVE-2022-36571 | Tenda AC9 V15.03.05.19 was discovered to contain a stack overflow via the mask parameter at /goform/WanParameterSetting. | Ac9_firmware | 7.2 | ||
| 2023-07-14 | CVE-2023-37716 | Tenda F1202 V1.0BR_V1.2.0.20(408) and FH1202_V1.2.0.19_EN, AC10 V1.0, AC1206 V1.0, AC7 V1.0, AC5 V1.0, and AC9 V3.0 were discovered to contain a stack overflow in the page parameter in the function fromNatStaticSetting. | Ac10_firmware, Ac1206_firmware, Ac5_firmware, Ac7_firmware, Ac9_firmware, F1202_firmware, Fh1202_firmware | 9.8 | ||
| 2023-07-14 | CVE-2023-37717 | Tenda F1202 V1.0BR_V1.2.0.20(408) and FH1202_V1.2.0.19_EN, AC10 V1.0, AC1206 V1.0, AC7 V1.0, AC5 V1.0, and AC9 V3.0 were discovered to contain a stack overflow in the page parameter in the function fromDhcpListClient. | Ac10_firmware, Ac1206_firmware, Ac5_firmware, Ac7_firmware, Ac9_firmware, F1202_firmware, Fh1202_firmware | 9.8 | ||
| 2023-08-07 | CVE-2023-38930 | Tenda AC7 V1.0,V15.03.06.44, F1203 V2.0.1.6, AC5 V1.0,V15.03.06.28, AC9 V3.0,V15.03.06.42_multi and FH1205 V2.0.0.7(775) were discovered to contain a stack overflow via the deviceId parameter in the addWifiMacFilter function. | Ac5_firmware, Ac7_firmware, Ac9_firmware, F1203_firmware, Fh1205_firmware | 9.8 | ||
| 2023-08-07 | CVE-2023-38933 | Tenda AC6 V2.0 V15.03.06.23, AC7 V1.0 V15.03.06.44, F1203 V2.0.1.6, AC5 V1.0 V15.03.06.28, FH1203 V2.0.1.6 and AC9 V3.0 V15.03.06.42_multi, and FH1205 V2.0.0.7(775) were discovered to contain a stack overflow via the deviceId parameter in the formSetClientState function. | Ac10_firmware, Ac1206_firmware, Ac5_firmware, Ac6_firmware, Ac7_firmware, Ac9_firmware, F1203_firmware, Fh1203_firmware, Fh1205_firmware | 9.8 |