Tenda Ac8 Firmware vulnerabilities

62 known vulnerabilities affecting tenda/ac8_firmware.

Total CVEs

CISA KEV

Public exploits

Exploited in wild

Severity breakdown

CRITICAL27HIGH27MEDIUM8

Vulnerabilities

Page 3 of 4

CVE-2023-40897CRITICALCVSS 9.8v16.03.34.062023-08-24

CVE-2023-40897 [CRITICAL] CWE-787 CVE-2023-40897: Tenda AC8 v4 US_AC8V4.0si_V16.03.34.06_cn was discovered to contain a stack overflow via parameter m Tenda AC8 v4 US_AC8V4.0si_V16.03.34.06_cn was discovered to contain a stack overflow via parameter mac at /goform/GetParentControlInfo.

nvd

CVE-2023-40898CRITICALCVSS 9.8v16.03.34.062023-08-24

CVE-2023-40898 [CRITICAL] CWE-787 CVE-2023-40898: Tenda AC8 v4 US_AC8V4.0si_V16.03.34.06_cn was discovered to contain a stack overflow via parameter t Tenda AC8 v4 US_AC8V4.0si_V16.03.34.06_cn was discovered to contain a stack overflow via parameter timeZone at /goform/SetSysTimeCfg.

nvd

CVE-2023-40895CRITICALCVSS 9.8v16.03.34.062023-08-24

CVE-2023-40895 [CRITICAL] CWE-787 CVE-2023-40895: Tenda AC8 v4 US_AC8V4.0si_V16.03.34.06_cn was discovered to contain a stack overflow via parameter l Tenda AC8 v4 US_AC8V4.0si_V16.03.34.06_cn was discovered to contain a stack overflow via parameter list at /goform/SetVirtualServerCfg.

nvd

CVE-2023-40893CRITICALCVSS 9.8v16.03.34.062023-08-24

CVE-2023-40893 [CRITICAL] CWE-787 CVE-2023-40893: Tenda AC8 v4 US_AC8V4.0si_V16.03.34.06_cn was discovered to contain a stack overflow via parameter t Tenda AC8 v4 US_AC8V4.0si_V16.03.34.06_cn was discovered to contain a stack overflow via parameter time at /goform/PowerSaveSet.

nvd

CVE-2023-40894CRITICALCVSS 9.8v16.03.34.062023-08-24

CVE-2023-40894 [CRITICAL] CWE-787 CVE-2023-40894: Tenda AC8 v4 US_AC8V4.0si_V16.03.34.06_cn was discovered to contain a stack overflow via parameter l Tenda AC8 v4 US_AC8V4.0si_V16.03.34.06_cn was discovered to contain a stack overflow via parameter list at /goform/SetStaticRouteCfg.

nvd

CVE-2023-40891CRITICALCVSS 9.8v16.03.34.062023-08-24

CVE-2023-40891 [CRITICAL] CWE-787 CVE-2023-40891: Tenda AC8 v4 US_AC8V4.0si_V16.03.34.06_cn was discovered to contain a stack overflow via parameter f Tenda AC8 v4 US_AC8V4.0si_V16.03.34.06_cn was discovered to contain a stack overflow via parameter firewallEn at /goform/SetFirewallCfg.

nvd

CVE-2023-40899CRITICALCVSS 9.8v16.03.34.062023-08-24

CVE-2023-40899 [CRITICAL] CWE-787 CVE-2023-40899: Tenda AC8 v4 US_AC8V4.0si_V16.03.34.06_cn was discovered to contain a stack overflow via parameter m Tenda AC8 v4 US_AC8V4.0si_V16.03.34.06_cn was discovered to contain a stack overflow via parameter macFilterType and parameter deviceList at /goform/setMacFilterCfg.

nvd

CVE-2023-40900CRITICALCVSS 9.8v16.03.34.062023-08-24

CVE-2023-40900 [CRITICAL] CWE-787 CVE-2023-40900: Tenda AC8 v4 US_AC8V4.0si_V16.03.34.06_cn was discovered to contain a stack overflow via parameter l Tenda AC8 v4 US_AC8V4.0si_V16.03.34.06_cn was discovered to contain a stack overflow via parameter list at /goform/SetNetControlList.

nvd

CVE-2023-40892CRITICALCVSS 9.8v16.03.34.062023-08-24

CVE-2023-40892 [CRITICAL] CWE-787 CVE-2023-40892: Tenda AC8 v4 US_AC8V4.0si_V16.03.34.06_cn was discovered to contain a stack overflow via parameter s Tenda AC8 v4 US_AC8V4.0si_V16.03.34.06_cn was discovered to contain a stack overflow via parameter schedStartTime and schedEndTime at /goform/openSchedWifi.

nvd

CVE-2023-40896CRITICALCVSS 9.8v16.03.34.062023-08-24

CVE-2023-40896 [CRITICAL] CWE-787 CVE-2023-40896: Tenda AC8 v4 US_AC8V4.0si_V16.03.34.06_cn was discovered to contain a stack overflow via parameter l Tenda AC8 v4 US_AC8V4.0si_V16.03.34.06_cn was discovered to contain a stack overflow via parameter list and bindnum at /goform/SetIpMacBind.

nvd

CVE-2023-39786HIGHCVSS 7.5v16.03.34.062023-08-21

CVE-2023-39786 [HIGH] CWE-787 CVE-2023-39786: Tenda AC8V4 V16.03.34.06 was discovered to contain a stack overflow via the time parameter in the ss Tenda AC8V4 V16.03.34.06 was discovered to contain a stack overflow via the time parameter in the sscanf function.

nvd

CVE-2023-39785HIGHCVSS 7.5v16.03.34.062023-08-21

CVE-2023-39785 [HIGH] CWE-787 CVE-2023-39785: Tenda AC8V4 V16.03.34.06 was discovered to contain a stack overflow via the list parameter in the se Tenda AC8V4 V16.03.34.06 was discovered to contain a stack overflow via the list parameter in the set_qosMib_list function.

nvd

CVE-2023-39784HIGHCVSS 7.5v16.03.34.062023-08-21

CVE-2023-39784 [HIGH] CWE-787 CVE-2023-39784: Tenda AC8V4 V16.03.34.06 was discovered to contain a stack overflow via the list parameter in the sa Tenda AC8V4 V16.03.34.06 was discovered to contain a stack overflow via the list parameter in the save_virtualser_data function.

nvd

CVE-2023-38935CRITICALCVSS 9.8v16.03.34.062023-08-07

CVE-2023-38935 [CRITICAL] CWE-787 CVE-2023-38935: Tenda AC1206 V15.03.06.23, AC8 V4 V16.03.34.06, AC5 V1.0 V15.03.06.28, AC10 v4.0 V16.03.10.13 and AC Tenda AC1206 V15.03.06.23, AC8 V4 V16.03.34.06, AC5 V1.0 V15.03.06.28, AC10 v4.0 V16.03.10.13 and AC9 V3.0 V15.03.06.42_multi were discovered to contain a tack overflow via the list parameter in the formSetQosBand function.

nvd

CVE-2023-38931CRITICALCVSS 9.8v16.03.34.062023-08-07

CVE-2023-38931 [CRITICAL] CWE-787 CVE-2023-38931: Tenda AC10 V1.0 V15.03.06.23, AC1206 V15.03.06.23, AC8 v4 V16.03.34.06, AC6 V2.0 V15.03.06.23, AC7 V Tenda AC10 V1.0 V15.03.06.23, AC1206 V15.03.06.23, AC8 v4 V16.03.34.06, AC6 V2.0 V15.03.06.23, AC7 V1.0 V15.03.06.44, F1203 V2.0.1.6, AC5 V1.0 V15.03.06.28, AC10 v4.0 V16.03.10.13 and FH1203 V2.0.1.6 were discovered to contain a stack overflow via the list parameter in the setaccount function.

nvd

CVE-2023-38937CRITICALCVSS 9.8v16.03.34.062023-08-07

CVE-2023-38937 [CRITICAL] CWE-787 CVE-2023-38937: Tenda AC10 V1.0 V15.03.06.23, AC1206 V15.03.06.23, AC8 v4 V16.03.34.06, AC6 V2.0 V15.03.06.23, AC7 V Tenda AC10 V1.0 V15.03.06.23, AC1206 V15.03.06.23, AC8 v4 V16.03.34.06, AC6 V2.0 V15.03.06.23, AC7 V1.0 V15.03.06.44, AC5 V1.0 V15.03.06.28, AC9 V3.0 V15.03.06.42_multi and AC10 v4.0 V16.03.10.13 were discovered to contain a stack overflow via the list parameter in the formSetVirtualSer function.

nvd

CVE-2023-33670CRITICALCVSS 9.8v16.03.34.062023-06-02

CVE-2023-33670 [CRITICAL] CWE-787 CVE-2023-33670: Tenda AC8V4.0-V16.03.34.06 was discovered to contain a stack overflow via the time parameter in the Tenda AC8V4.0-V16.03.34.06 was discovered to contain a stack overflow via the time parameter in the sub_4a79ec function.

nvd

CVE-2023-33673CRITICALCVSS 9.8v16.03.34.062023-06-02

CVE-2023-33673 [CRITICAL] CWE-787 CVE-2023-33673: Tenda AC8V4.0-V16.03.34.06 was discovered to contain a stack overflow via the firewallEn parameter i Tenda AC8V4.0-V16.03.34.06 was discovered to contain a stack overflow via the firewallEn parameter in the formSetFirewallCfg function.

nvd

CVE-2023-33675CRITICALCVSS 9.8v16.03.34.062023-06-02

CVE-2023-33675 [CRITICAL] CWE-787 CVE-2023-33675: Tenda AC8V4.0-V16.03.34.06 was discovered to contain a stack overflow via the time parameter in the Tenda AC8V4.0-V16.03.34.06 was discovered to contain a stack overflow via the time parameter in the get_parentControl_list_Info function.

nvd

CVE-2023-33669CRITICALCVSS 9.8v16.03.34.062023-06-02

CVE-2023-33669 [CRITICAL] CWE-787 CVE-2023-33669: Tenda AC8V4.0-V16.03.34.06 was discovered to contain a stack overflow via the timeZone parameter in Tenda AC8V4.0-V16.03.34.06 was discovered to contain a stack overflow via the timeZone parameter in the sub_44db3c function.

nvd

← Previous3 / 4Next →