Vulnerabilities (CVE)

Filtered by vendor Tenda Subscribe

Filtered by product Ax12 Firmware

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 7 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2023-49428	1 Tenda	2 Ax12, Ax12 Firmware	2023-12-09	N/A	9.8 CRITICAL
Tenda AX12 V22.03.01.46 has been discovered to contain a command injection vulnerability in the 'mac' parameter at /goform/SetOnlineDevName.
CVE-2023-49425	1 Tenda	2 Ax12, Ax12 Firmware	2023-12-09	N/A	9.8 CRITICAL
Tenda AX12 V22.03.01.46 was discovered to contain a stack overflow via the deviceList parameter at /goform/setMacFilterCfg .
CVE-2023-49424	1 Tenda	2 Ax12, Ax12 Firmware	2023-12-09	N/A	9.8 CRITICAL
Tenda AX12 V22.03.01.46 was discovered to contain a stack overflow via the list parameter at /goform/SetVirtualServerCfg.
CVE-2023-49437	1 Tenda	2 Ax12, Ax12 Firmware	2023-12-09	N/A	9.8 CRITICAL
Tenda AX12 V22.03.01.46 has been discovered to contain a command injection vulnerability in the 'list' parameter at /goform/SetNetControlList.
CVE-2023-49426	1 Tenda	2 Ax12, Ax12 Firmware	2023-12-09	N/A	9.8 CRITICAL
Tenda AX12 V22.03.01.46 was discovered to contain a stack overflow via the list parameter at /goform/SetStaticRouteCfg.
CVE-2022-28082	1 Tenda	2 Ax12, Ax12 Firmware	2022-05-12	7.5 HIGH	9.8 CRITICAL
Tenda AX12 v22.03.01.21_CN was discovered to contain a stack overflow via the list parameter at /goform/SetNetControlList.
CVE-2022-28561	1 Tenda	2 Ax12, Ax12 Firmware	2022-05-09	10.0 HIGH	9.8 CRITICAL
There is a stack overflow vulnerability in the /goform/setMacFilterCfg function in the httpd service of Tenda ax12 22.03.01.21_cn router. An attacker can obtain a stable shell through a carefully constructed payload