CPSeek/Router-vuls

Releases0

Stars5

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2022-40866 ↗	Sep 23, 2022Friday, 23 September 2022, 15:15	9.8 CRITICAL	—
Tenda W20E router V15.11.0.6 (US_W20EV4.0br_V15.11.0.6(1068_1546_841)_CN_TDC) contains a stack overflow vulnerability in the function formSetDebugCfg with request /goform/setDebugCfg/
CVE-2022-40854 ↗	Sep 23, 2022Friday, 23 September 2022, 15:15	9.8 CRITICAL	—
Tenda AC18 router contained a stack overflow vulnerability in /goform/fast_setting_wifi_set
CVE-2022-40855 ↗	Sep 23, 2022Friday, 23 September 2022, 15:15	9.8 CRITICAL	—
Tenda W20E router V15.11.0.6 contains a stack overflow in the function formSetPortMapping with post request 'goform/setPortMapping/'. This vulnerability allows attackers to cause a Denial of Service (DoS) or Remote Code Execution (RCE) via the portMappingServer, portMappingProtocol, portMappingWan, porMappingtInternal, and portMappingExternal parameters.
CVE-2022-40861 ↗	Sep 23, 2022Friday, 23 September 2022, 15:15	7.2 HIGH	—
Tenda AC18 router V15.03.05.19 contains a stack overflow vulnerability in the formSetQosBand->FUN_0007db78 function with the request /goform/SetNetControlList/
CVE-2022-40851 ↗	Sep 23, 2022Friday, 23 September 2022, 15:15	9.8 CRITICAL	—
Tenda AC15 V15.03.05.19 contained a stack overflow via the function fromAddressNat.
CVE-2022-40867 ↗	Sep 23, 2022Friday, 23 September 2022, 15:15	9.8 CRITICAL	—
Tenda W20E router V15.11.0.6 (US_W20EV4.0br_V15.11.0.6(1068_1546_841)_CN_TDC) contains a stack overflow vulnerability in the function formIPMacBindDel with the request /goform/delIpMacBind/
CVE-2022-40868 ↗	Sep 23, 2022Friday, 23 September 2022, 15:15	9.8 CRITICAL	—
Tenda W20E router V15.11.0.6 (US_W20EV4.0br_V15.11.0.6(1068_1546_841)_CN_TDC) contains a stack overflow vulnerability in the function formDelDhcpRule with the request /goform/delDhcpRules/
CVE-2022-40853 ↗	Sep 23, 2022Friday, 23 September 2022, 14:15	9.8 CRITICAL	—
Tenda AC15 router V15.03.05.19 contains a stack overflow via the list parameter at /goform/fast_setting_wifi_set
CVE-2022-40860 ↗	Sep 23, 2022Friday, 23 September 2022, 14:15	9.8 CRITICAL	—
Tenda AC15 router V15.03.05.19 contains a stack overflow vulnerability in the function formSetQosBand->FUN_0007dd20 with request /goform/SetNetControlList
CVE-2022-40862 ↗	Sep 23, 2022Friday, 23 September 2022, 14:15	9.8 CRITICAL	—
Tenda AC15 and AC18 router V15.03.05.19 contains stack overflow vulnerability in the function fromNatStaticSetting with the request /goform/NatStaticSetting
CVE-2022-40864 ↗	Sep 23, 2022Friday, 23 September 2022, 14:15	9.8 CRITICAL	—
Tenda AC15 and AC18 routers V15.03.05.19 contain stack overflow vulnerabilities in the function setSmartPowerManagement with the request /goform/PowerSaveSet
CVE-2022-40865 ↗	Sep 23, 2022Friday, 23 September 2022, 14:15	9.8 CRITICAL	—
Tenda AC15 and AC18 routers V15.03.05.19 contain heap overflow vulnerabilities in the function setSchedWifi with the request /goform/openSchedWifi/
CVE-2022-40869 ↗	Sep 23, 2022Friday, 23 September 2022, 14:15	9.8 CRITICAL	—
Tenda AC15 and AC18 routers V15.03.05.19 contain stack overflow vulnerabilities in the function fromDhcpListClient with a combined parameter "list*" ("%s%d","list").