Tenda Tx9 vulnerabilities

CVE-2026-2139 [HIGH] CWE-119 CVE-2026-2139: A vulnerability was determined in Tenda TX9 up to 22.03.02.10_multi. Affected by this vulnerability A vulnerability was determined in Tenda TX9 up to 22.03.02.10_multi. Affected by this vulnerability is the function sub_432580 of the file /goform/fast_setting_wifi_set. This manipulation of the argument ssid causes buffer overflow. The attack may be initiated remotely. The exploit has been publicly disclosed and may be utilized.

CVE-2026-2140 [HIGH] CWE-119 CVE-2026-2140: A vulnerability was identified in Tenda TX9 up to 22.03.02.10_multi. Affected by this issue is the f A vulnerability was identified in Tenda TX9 up to 22.03.02.10_multi. Affected by this issue is the function sub_4223E0 of the file /goform/setMacFilterCfg. Such manipulation of the argument deviceList leads to buffer overflow. The attack may be launched remotely. The exploit is publicly available and might be used.

CVE-2026-2138 [HIGH] CWE-119 CVE-2026-2138: A vulnerability was found in Tenda TX9 up to 22.03.02.10_multi. Affected is the function sub_42D03C A vulnerability was found in Tenda TX9 up to 22.03.02.10_multi. Affected is the function sub_42D03C of the file /goform/SetStaticRouteCfg. The manipulation of the argument list results in buffer overflow. The attack can be launched remotely. The exploit has been made public and could be used.

CVE-2024-4114 [HIGH] CWE-121 CVE-2024-4114: A vulnerability, which was classified as critical, has been found in Tenda TX9 22.03.02.10. This iss A vulnerability, which was classified as critical, has been found in Tenda TX9 22.03.02.10. This issue affects the function sub_42C014 of the file /goform/PowerSaveSet. The manipulation of the argument time leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identi

CVE-2024-4111 [HIGH] CWE-121 CVE-2024-4111: A vulnerability was found in Tenda TX9 22.03.02.10. It has been rated as critical. Affected by this A vulnerability was found in Tenda TX9 22.03.02.10. It has been rated as critical. Affected by this issue is the function sub_42BD7C of the file /goform/SetLEDCfg. The manipulation of the argument time leads to stack-based buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-261854 is the

CVE-2024-4112 [HIGH] CWE-121 CVE-2024-4112: A vulnerability classified as critical has been found in Tenda TX9 22.03.02.10. This affects the fun A vulnerability classified as critical has been found in Tenda TX9 22.03.02.10. This affects the function sub_42CB94 of the file /goform/SetVirtualServerCfg. The manipulation of the argument list leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The associa

CVE-2024-4113 [HIGH] CWE-121 CVE-2024-4113: A vulnerability classified as critical was found in Tenda TX9 22.03.02.10. This vulnerability affect A vulnerability classified as critical was found in Tenda TX9 22.03.02.10. This vulnerability affects the function sub_42D4DC of the file /goform/SetSysTimeCfg. The manipulation of the argument time leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier of