Tendacn

G1 Firmware

23 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2022-24172

Exploit
  • EPSS 0.35%
  • Veröffentlicht 04.02.2022 02:15:11
  • Zuletzt bearbeitet 21.11.2024 06:49:57

Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a stack overflow in the function formAddDhcpBindRule. This vulnerability allows attackers to cause a Denial of Service (DoS) via the addDhcpRules parameter.

9.8

CVE-2022-24171

Exploit
  • EPSS 15.55%
  • Veröffentlicht 04.02.2022 02:15:11
  • Zuletzt bearbeitet 21.11.2024 06:49:57

Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a command injection vulnerability in the function formSetPppoeServer. This vulnerability allows attackers to execute arbitrary commands via the pppoeServerIP, pppoeServerStartIP,...

9.8

CVE-2022-24170

Exploit
  • EPSS 15.55%
  • Veröffentlicht 04.02.2022 02:15:11
  • Zuletzt bearbeitet 21.11.2024 06:49:57

Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a command injection vulnerability in the function formSetIpSecTunnel. This vulnerability allows attackers to execute arbitrary commands via the IPsecLocalNet and IPsecRemoteNet p...

7.8

CVE-2022-24169

Exploit
  • EPSS 0.35%
  • Veröffentlicht 04.02.2022 02:15:11
  • Zuletzt bearbeitet 21.11.2024 06:49:57

Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a stack overflow in the function formIPMacBindAdd. This vulnerability allows attackers to cause a Denial of Service (DoS) via the IPMacBindRule parameter.

9.8

CVE-2022-24168

Exploit
  • EPSS 4.33%
  • Veröffentlicht 04.02.2022 02:15:11
  • Zuletzt bearbeitet 21.11.2024 06:49:57

Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a command injection vulnerability in the function formSetIpGroup. This vulnerability allows attackers to execute arbitrary commands via the IPGroupStartIP and IPGroupEndIP parame...

9.8

CVE-2022-24167

Exploit
  • EPSS 4.33%
  • Veröffentlicht 04.02.2022 02:15:10
  • Zuletzt bearbeitet 21.11.2024 06:49:57

Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a command injection vulnerability in the function formSetDMZ. This vulnerability allows attackers to execute arbitrary commands via the dmzHost1 parameter.

7.8

CVE-2022-24166

Exploit
  • EPSS 0.35%
  • Veröffentlicht 04.02.2022 02:15:10
  • Zuletzt bearbeitet 21.11.2024 06:49:57

Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a stack overflow in the function formSetSysTime. This vulnerability allows attackers to cause a Denial of Service (DoS) via the manualTime parameter.

9.8

CVE-2022-24165

Exploit
  • EPSS 15.55%
  • Veröffentlicht 04.02.2022 02:15:10
  • Zuletzt bearbeitet 21.11.2024 06:49:56

Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a command injection vulnerability in the function formSetQvlanList. This vulnerability allows attackers to execute arbitrary commands via the qvlanIP parameter.

7.8

CVE-2022-24164

Exploit
  • EPSS 0.35%
  • Veröffentlicht 04.02.2022 02:15:10
  • Zuletzt bearbeitet 21.11.2024 06:49:56

Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a stack overflow in the function formSetVirtualSer. This vulnerability allows attackers to cause a Denial of Service (DoS) via the DnsHijackRule parameter.

7.8

CVE-2021-45997

  • EPSS 0.35%
  • Veröffentlicht 04.02.2022 02:15:09
  • Zuletzt bearbeitet 21.11.2024 06:33:27

Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a stack overflow in the function formSetPortMapping. This vulnerability allows attackers to cause a Denial of Service (DoS) via the portMappingServer, portMappingProtocol, portMa...