Tenda I29 Firmware vulnerabilities

10 known vulnerabilities affecting tenda/i29_firmware.

Total CVEs
10
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL9HIGH1

Vulnerabilities

Page 1 of 1
CVE-2023-50991HIGHCVSS 7.5v1.0.0.2v1.0.0.52024-01-05
CVE-2023-50991 [HIGH] CWE-120 CVE-2023-50991: Buffer Overflow vulnerability in Tenda i29 versions 1.0 V1.0.0.5 and 1.0 V1.0.0.2, allows remote att Buffer Overflow vulnerability in Tenda i29 versions 1.0 V1.0.0.5 and 1.0 V1.0.0.2, allows remote attackers to cause a denial of service (DoS) via the pingIp parameter in the pingSet function.
nvd
CVE-2023-50987CRITICALCVSS 9.8v1.0.0.2v1.0.0.52023-12-20
CVE-2023-50987 [CRITICAL] CWE-787 CVE-2023-50987: Tenda i29 v1.0 V1.0.0.5 was discovered to contain a buffer overflow via the time parameter in the sy Tenda i29 v1.0 V1.0.0.5 was discovered to contain a buffer overflow via the time parameter in the sysTimeInfoSet function.
nvd
CVE-2023-50985CRITICALCVSS 9.8v1.0.0.2v1.0.0.52023-12-20
CVE-2023-50985 [CRITICAL] CWE-787 CVE-2023-50985: Tenda i29 v1.0 V1.0.0.5 was discovered to contain a buffer overflow via the lanGw parameter in the l Tenda i29 v1.0 V1.0.0.5 was discovered to contain a buffer overflow via the lanGw parameter in the lanCfgSet function.
nvd
CVE-2023-50990CRITICALCVSS 9.8v1.0.0.2v1.0.0.52023-12-20
CVE-2023-50990 [CRITICAL] CWE-787 CVE-2023-50990: Tenda i29 v1.0 V1.0.0.5 was discovered to contain a buffer overflow via the rebootTime parameter in Tenda i29 v1.0 V1.0.0.5 was discovered to contain a buffer overflow via the rebootTime parameter in the sysScheduleRebootSet function.
nvd
CVE-2023-50984CRITICALCVSS 9.8v1.0.0.2v1.0.0.52023-12-20
CVE-2023-50984 [CRITICAL] CWE-787 CVE-2023-50984: Tenda i29 v1.0 V1.0.0.5 was discovered to contain a buffer overflow via the ip parameter in the spdt Tenda i29 v1.0 V1.0.0.5 was discovered to contain a buffer overflow via the ip parameter in the spdtstConfigAndStart function.
nvd
CVE-2023-50992CRITICALCVSS 9.8v1.0.0.2v1.0.0.52023-12-20
CVE-2023-50992 [CRITICAL] CWE-787 CVE-2023-50992: Tenda i29 v1.0 V1.0.0.5 was discovered to contain a stack overflow via the ip parameter in the setPi Tenda i29 v1.0 V1.0.0.5 was discovered to contain a stack overflow via the ip parameter in the setPing function.
nvd
CVE-2023-50986CRITICALCVSS 9.8v1.0.0.2v1.0.0.52023-12-20
CVE-2023-50986 [CRITICAL] CWE-787 CVE-2023-50986: Tenda i29 v1.0 V1.0.0.5 was discovered to contain a buffer overflow via the time parameter in the sy Tenda i29 v1.0 V1.0.0.5 was discovered to contain a buffer overflow via the time parameter in the sysLogin function.
nvd
CVE-2023-50988CRITICALCVSS 9.8v1.0.0.2v1.0.0.52023-12-20
CVE-2023-50988 [CRITICAL] CWE-787 CVE-2023-50988: Tenda i29 v1.0 V1.0.0.5 was discovered to contain a buffer overflow via the bandwidth parameter in t Tenda i29 v1.0 V1.0.0.5 was discovered to contain a buffer overflow via the bandwidth parameter in the wifiRadioSetIndoor function.
nvd
CVE-2023-50983CRITICALCVSS 9.8v1.0.0.2v1.0.0.52023-12-20
CVE-2023-50983 [CRITICAL] CWE-77 CVE-2023-50983: Tenda i29 v1.0 V1.0.0.5 was discovered to contain a command injection vulnerability via the sysSched Tenda i29 v1.0 V1.0.0.5 was discovered to contain a command injection vulnerability via the sysScheduleRebootSet function.
nvd
CVE-2023-50989CRITICALCVSS 9.8v1.0.0.2v1.0.0.52023-12-20
CVE-2023-50989 [CRITICAL] CWE-77 CVE-2023-50989: Tenda i29 v1.0 V1.0.0.5 was discovered to contain a command injection vulnerability via the pingSet Tenda i29 v1.0 V1.0.0.5 was discovered to contain a command injection vulnerability via the pingSet function.
nvd