Tenda 4G300 Firmware vulnerabilities

CVE-2024-4167 [HIGH] CWE-121 CVE-2024-4167: A vulnerability was found in Tenda 4G300 1.01.42 and classified as critical. Affected by this issue A vulnerability was found in Tenda 4G300 1.01.42 and classified as critical. Affected by this issue is the function sub_422AA4. The manipulation of the argument year/month/day/hour/minute/second leads to stack-based buffer overflow. The attack may be launched remotely. VDB-261986 is the identifier assigned to this vulnerability. NOTE: The vendor was cont

CVE-2024-4166 [HIGH] CWE-121 CVE-2024-4166: A vulnerability has been found in Tenda 4G300 1.01.42 and classified as critical. Affected by this v A vulnerability has been found in Tenda 4G300 1.01.42 and classified as critical. Affected by this vulnerability is the function sub_41E858. The manipulation of the argument GO/page leads to stack-based buffer overflow. The attack can be launched remotely. The identifier VDB-261985 was assigned to this vulnerability. NOTE: The vendor was contacted early

CVE-2024-4169 [HIGH] CWE-121 CVE-2024-4169: A vulnerability was found in Tenda 4G300 1.01.42. It has been declared as critical. This vulnerabili A vulnerability was found in Tenda 4G300 1.01.42. It has been declared as critical. This vulnerability affects the function sub_42775C/sub_4279CC. The manipulation of the argument page leads to stack-based buffer overflow. The attack can be initiated remotely. The identifier of this vulnerability is VDB-261988. NOTE: The vendor was contacted early about

CVE-2024-4170 [HIGH] CWE-121 CVE-2024-4170: A vulnerability was found in Tenda 4G300 1.01.42. It has been rated as critical. This issue affects A vulnerability was found in Tenda 4G300 1.01.42. It has been rated as critical. This issue affects the function sub_429A30. The manipulation of the argument list1 leads to stack-based buffer overflow. The attack may be initiated remotely. The identifier VDB-261989 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclo

CVE-2024-4168 [HIGH] CWE-121 CVE-2024-4168: A vulnerability was found in Tenda 4G300 1.01.42. It has been classified as critical. This affects t A vulnerability was found in Tenda 4G300 1.01.42. It has been classified as critical. This affects the function sub_4260F0. The manipulation of the argument upfilen leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The associated identifier of this vulnerability is VDB-261987. NOTE: The vendor was contacted early abou

CVE-2023-38929 [CRITICAL] CWE-787 CVE-2023-38929: Tenda 4G300 v1.01.42 was discovered to contain a stack overflow via the page parameter at /VirtualSe Tenda 4G300 v1.01.42 was discovered to contain a stack overflow via the page parameter at /VirtualSer.