Tendacn Fh1201 Firmware vulnerabilities
15 known vulnerabilities affecting tendacn/fh1201_firmware.
Total CVEs
15
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL5HIGH10
Vulnerabilities
Page 1 of 1
CVE-2024-41473P2CRITICALCVSS 9.8v1.2.0.142024-07-25
CVE-2024-41473 [CRITICAL] CWE-78 CVE-2024-41473: Tenda FH1201 v1.2.0.14 was discovered to contain a command injection vulnerability via the mac param
Tenda FH1201 v1.2.0.14 was discovered to contain a command injection vulnerability via the mac parameter at ip/goform/WriteFacMac
nvd
CVE-2024-41468P2CRITICALCVSS 9.8v1.2.0.142024-07-25
CVE-2024-41468 [CRITICAL] CWE-78 CVE-2024-41468: Tenda FH1201 v1.2.0.14 was discovered to contain a command injection vulnerability via the cmdinput
Tenda FH1201 v1.2.0.14 was discovered to contain a command injection vulnerability via the cmdinput parameter at /goform/exeCommand
nvd
CVE-2024-41461P2CRITICALCVSS 9.8v1.2.0.142024-07-24
CVE-2024-41461 [CRITICAL] CWE-787 CVE-2024-41461: Tenda FH1201 v1.2.0.14 was discovered to contain a stack-based buffer overflow vulnerability via the
Tenda FH1201 v1.2.0.14 was discovered to contain a stack-based buffer overflow vulnerability via the list1 parameter at ip/goform/DhcpListClient.
nvd
CVE-2024-41459P2CRITICALCVSS 9.8v1.2.0.142024-07-24
CVE-2024-41459 [CRITICAL] CWE-787 CVE-2024-41459: Tenda FH1201 v1.2.0.14 was discovered to contain a stack-based buffer overflow vulnerability via the
Tenda FH1201 v1.2.0.14 was discovered to contain a stack-based buffer overflow vulnerability via the PPPOEPassword parameter at ip/goform/QuickIndex.
nvd
CVE-2024-41460P2CRITICALCVSS 9.8v1.2.0.142024-07-24
CVE-2024-41460 [CRITICAL] CWE-787 CVE-2024-41460: Tenda FH1201 v1.2.0.14 was discovered to contain a stack-based buffer overflow vulnerability via the
Tenda FH1201 v1.2.0.14 was discovered to contain a stack-based buffer overflow vulnerability via the entrys parameter at ip/goform/RouteStatic.
nvd
CVE-2024-41464P3HIGHCVSS 7.5v1.2.0.142024-07-24
CVE-2024-41464 [HIGH] CWE-787 CVE-2024-41464: Tenda FH1201 v1.2.0.14 was discovered to contain a stack-based buffer overflow vulnerability via the
Tenda FH1201 v1.2.0.14 was discovered to contain a stack-based buffer overflow vulnerability via the mitInterface parameter in ip/goform/RouteStatic
nvd
CVE-2024-41465P3HIGHCVSS 7.5v1.2.0.142024-07-24
CVE-2024-41465 [HIGH] CWE-787 CVE-2024-41465: Tenda FH1201 v1.2.0.14 was discovered to contain a stack-based buffer overflow vulnerability via the
Tenda FH1201 v1.2.0.14 was discovered to contain a stack-based buffer overflow vulnerability via the funcpara1 parameter at ip/goform/setcfm.
nvd
CVE-2024-41463P3HIGHCVSS 7.5v1.2.0.142024-07-24
CVE-2024-41463 [HIGH] CWE-787 CVE-2024-41463: Tenda FH1201 v1.2.0.14 was discovered to contain a stack-based buffer overflow vulnerability via the
Tenda FH1201 v1.2.0.14 was discovered to contain a stack-based buffer overflow vulnerability via the entrys parameter at ip/goform/addressNat.
nvd
CVE-2024-41462P3HIGHCVSS 7.5v1.2.0.142024-07-24
CVE-2024-41462 [HIGH] CWE-787 CVE-2024-41462: Tenda FH1201 v1.2.0.14 was discovered to contain a stack-based buffer overflow vulnerability via the
Tenda FH1201 v1.2.0.14 was discovered to contain a stack-based buffer overflow vulnerability via the page parameter at ip/goform/DhcpListClient.
nvd
CVE-2024-41466P3HIGHCVSS 7.5v1.2.0.142024-07-24
CVE-2024-41466 [HIGH] CWE-787 CVE-2024-41466: Tenda FH1201 v1.2.0.14 was discovered to contain a stack-based buffer overflow vulnerability via the
Tenda FH1201 v1.2.0.14 was discovered to contain a stack-based buffer overflow vulnerability via the page parameter at ip/goform/NatStaticSetting.
nvd
CVE-2024-42945P3HIGHCVSS 7.5v1.2.0.14\(408\)2024-08-15
CVE-2024-42945 [HIGH] CWE-787 CVE-2024-42945: Tenda FH1201 v1.2.0.14 (408) was discovered to contain a stack overflow via the page parameter in th
Tenda FH1201 v1.2.0.14 (408) was discovered to contain a stack overflow via the page parameter in the fromAddressNat function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted POST request.
nvd
CVE-2024-42942P3HIGHCVSS 7.5v1.2.0.14\(408\)2024-08-15
CVE-2024-42942 [HIGH] CWE-787 CVE-2024-42942: Tenda FH1201 v1.2.0.14 (408) was discovered to contain a stack overflow via the page parameter in th
Tenda FH1201 v1.2.0.14 (408) was discovered to contain a stack overflow via the page parameter in the frmL7ImForm function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted POST request.
nvd
CVE-2024-42954P3HIGHCVSS 7.5v1.2.0.14\(408\)2024-08-15
CVE-2024-42954 [HIGH] CWE-787 CVE-2024-42954: Tenda FH1201 v1.2.0.14 (408) was discovered to contain a stack overflow via the page parameter in th
Tenda FH1201 v1.2.0.14 (408) was discovered to contain a stack overflow via the page parameter in the fromwebExcptypemanFilter function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted POST request.
nvd
CVE-2024-42949P3HIGHCVSS 7.5v1.2.0.14\(408\)2024-08-15
CVE-2024-42949 [HIGH] CWE-787 CVE-2024-42949: Tenda FH1201 v1.2.0.14 (408) was discovered to contain a stack overflow via the qos parameter in the
Tenda FH1201 v1.2.0.14 (408) was discovered to contain a stack overflow via the qos parameter in the fromqossetting function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted POST request.
nvd
CVE-2024-42953P3HIGHCVSS 7.5v1.2.0.14\(408\)2024-08-15
CVE-2024-42953 [HIGH] CWE-787 CVE-2024-42953: Tenda FH1201 v1.2.0.14 (408) was discovered to contain a stack overflow via the PPW parameter in the
Tenda FH1201 v1.2.0.14 (408) was discovered to contain a stack overflow via the PPW parameter in the fromWizardHandle function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted POST request.
nvd