Tendacn Ac6 Firmware vulnerabilities

CVE-2022-45659 [HIGH] CWE-120 CVE-2022-45659: Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the wpapsk_crypto paramet Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the wpapsk_crypto parameter in the fromSetWirelessRepeat function.

CVE-2022-45645 [HIGH] CWE-120 CVE-2022-45645: Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the deviceMac parameter i Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the deviceMac parameter in the addWifiMacFilter function.

CVE-2022-45660 [HIGH] CWE-120 CVE-2022-45660: Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the schedStartTime parame Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the schedStartTime parameter in the setSchedWifi function.

CVE-2022-45655 [HIGH] CWE-120 CVE-2022-45655: Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the timeZone parameter in Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the timeZone parameter in the form_fast_setting_wifi_set function.

CVE-2022-45657 [HIGH] CWE-120 CVE-2022-45657: Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the list parameter in the Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the list parameter in the fromSetIpMacBind function.

CVE-2022-45647 [HIGH] CWE-120 CVE-2022-45647: Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the limitSpeed parameter Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the limitSpeed parameter in the formSetClientState function.

CVE-2022-45654 [HIGH] CWE-120 CVE-2022-45654: Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the ssid parameter in the Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the ssid parameter in the form_fast_setting_wifi_set function.

CVE-2022-45661 [HIGH] CWE-120 CVE-2022-45661: Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the time parameter in the Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the time parameter in the setSmartPowerManagement function.

CVE-2022-45644 [HIGH] CWE-120 CVE-2022-45644: Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the deviceId parameter in Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the deviceId parameter in the formSetClientState function.

CVE-2022-45658 [HIGH] CWE-120 CVE-2022-45658: Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the schedEndTime paramete Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the schedEndTime parameter in the setSchedWifi function.

CVE-2022-45649 [HIGH] CWE-120 CVE-2022-45649: Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the endIp parameter in th Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the endIp parameter in the formSetPPTPServer function.

CVE-2022-45656 [HIGH] CWE-120 CVE-2022-45656: Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the time parameter in the Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the time parameter in the fromSetSysTime function.

CVE-2022-45652 [HIGH] CWE-120 CVE-2022-45652: Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the startIp parameter in Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the startIp parameter in the formSetPPTPServer function.

CVE-2022-45650 [HIGH] CWE-120 CVE-2022-45650: Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the firewallEn parameter Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the firewallEn parameter in the formSetFirewallCfg function.

CVE-2022-45653 [HIGH] CWE-120 CVE-2022-45653: Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the page parameter in the Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the page parameter in the fromNatStaticSetting function.

CVE-2022-45646 [HIGH] CWE-120 CVE-2022-45646: Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the limitSpeedUp paramete Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the limitSpeedUp parameter in the formSetClientState function.

CVE-2022-45651 [HIGH] CWE-120 CVE-2022-45651: Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the list parameter in the Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the list parameter in the formSetVirtualSer function.

CVE-2022-45643 [HIGH] CWE-120 CVE-2022-45643: Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the deviceId parameter in Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the deviceId parameter in the addWifiMacFilter function.

CVE-2022-45648 [HIGH] CWE-120 CVE-2022-45648: Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the devName parameter in Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the devName parameter in the formSetDeviceName function.

CVE-2022-37176 [CRITICAL] CVE-2022-37176: Tenda AC6(AC1200) v5.0 Firmware v02.03.01.114 and below contains a vulnerability which allows attack Tenda AC6(AC1200) v5.0 Firmware v02.03.01.114 and below contains a vulnerability which allows attackers to remove the Wi-Fi password and force the device into open security mode via a crafted packet sent to goform/setWizard.