Tenda Ax1806 vulnerabilities

CVE-2024-4238 [HIGH] CWE-121 CVE-2024-4238: A vulnerability has been found in Tenda AX1806 1.0.0.1 and classified as critical. Affected by this A vulnerability has been found in Tenda AX1806 1.0.0.1 and classified as critical. Affected by this vulnerability is the function formSetDeviceName of the file /goform/SetOnlineDevName. The manipulation of the argument devName leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may b

CVE-2024-4237 [HIGH] CWE-121 CVE-2024-4237: A vulnerability, which was classified as critical, was found in Tenda AX1806 1.0.0.1. Affected is th A vulnerability, which was classified as critical, was found in Tenda AX1806 1.0.0.1. Affected is the function R7WebsSecurityHandler of the file /goform/execCommand. The manipulation of the argument password leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. T

CVE-2024-4239 [HIGH] CWE-121 CVE-2024-4239: A vulnerability was found in Tenda AX1806 1.0.0.1 and classified as critical. Affected by this issue A vulnerability was found in Tenda AX1806 1.0.0.1 and classified as critical. Affected by this issue is the function formSetRebootTimer of the file /goform/SetRebootTimer. The manipulation of the argument rebootTime leads to stack-based buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VD