cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-30620,https://securityvulnerability.io/vulnerability/CVE-2024-30620,Stack Overflow Vulnerability in Tenda AX1803 by Tenda,"The Tenda AX1803 v1.0.0.1 is susceptible to a stack overflow vulnerability, which is triggered through improper handling of the serviceName parameter in the fromAdvSetMacMtuWan function. Exploitation of this vulnerability may allow attackers to execute arbitrary code or disrupt the normal functionality of the affected device. Proper validation and sanitization of input parameters are critical to mitigating the risks associated with this vulnerability.",Tenda,Ax1803 Firmware,9.8,CRITICAL,0.0016299999551847577,false,,false,false,false,,,false,false,,2024-04-02T14:15:00.000Z,0
CVE-2024-30621,https://securityvulnerability.io/vulnerability/CVE-2024-30621,Stack Overflow Vulnerability in Tenda AX1803 Devices,"The vulnerability identified in Tenda AX1803 (version 1.0.0.1) involves a stack overflow that occurs when a user or attacker inputs a specially crafted value into the serverName parameter during the execution of the fromAdvSetMacMtuWan function. This flaw could be exploited to disrupt the device's operations, potentially leading to unauthorized access or denial of service. It is crucial for users and administrators of affected Tenda product models to evaluate their systems and apply necessary security measures to mitigate the risks associated with this vulnerability.",Tenda,Ax1803 Firmware,9.8,CRITICAL,0.0015800000401213765,false,,false,false,false,,,false,false,,2024-04-02T14:15:00.000Z,0
CVE-2023-51957,https://securityvulnerability.io/vulnerability/CVE-2023-51957,Stack Overflow Vulnerability in Tenda AX1803,"The vulnerability in Tenda AX1803 v1.0.0.1 arises due to a stack overflow condition exploited through the iptv.stb.mode parameter within the formGetIptv function. This flaw may allow attackers to manipulate the system's memory, potentially leading to unauthorized access or control over the affected device. It is crucial for users and administrators to be aware of this vulnerability to implement necessary mitigations.",Tenda,Ax1803 Firmware,9.8,CRITICAL,0.0017999999690800905,false,,false,false,false,,,false,false,,2024-01-10T00:00:00.000Z,0
CVE-2023-51972,https://securityvulnerability.io/vulnerability/CVE-2023-51972,Command Injection Vulnerability in Tenda AX1803 Router,"The Tenda AX1803 router has a vulnerability in the function fromAdvSetLanIp that allows for command injection. This security flaw could enable an attacker to execute arbitrary commands on the affected device, potentially compromising the integrity and availability of the network. It's critical for users of the Tenda AX1803 to assess their risk exposure and apply necessary security measures to safeguard their systems.",Tenda,Ax1803 Firmware,9.8,CRITICAL,0.03897000104188919,false,,false,false,false,,,false,false,,2024-01-10T00:00:00.000Z,0
CVE-2023-51961,https://securityvulnerability.io/vulnerability/CVE-2023-51961,Stack Overflow Vulnerability in Tenda AX1803 Product,"A stack overflow vulnerability exists in the Tenda AX1803 v1.0.0.1, specifically triggered through the adv.iptv.stballvlans parameter in the formGetIptv function. This flaw potentially allows remote attackers to execute arbitrary code, leading to data compromise and unauthorized access. Prompt attention to this vulnerability is essential to safeguard sensitive information and maintain system integrity.",Tenda,Ax1803 Firmware,9.8,CRITICAL,0.0017999999690800905,false,,false,false,false,,,false,false,,2024-01-10T00:00:00.000Z,0
CVE-2023-51958,https://securityvulnerability.io/vulnerability/CVE-2023-51958,Stack Overflow Vulnerability in Tenda AX1803 Smart Router,"The Tenda AX1803 smart router version v1.0.0.1 is affected by a stack overflow vulnerability that can occur through improper handling of the iptv.stb.port parameter within the formGetIptv function. This flaw allows an attacker to potentially exploit the vulnerability to execute arbitrary code on the affected device, leading to unauthorized access or control over the device. Proper mitigation steps should be taken to safeguard against this risk.",Tenda,Ax1803 Firmware,9.8,CRITICAL,0.0017999999690800905,false,,false,false,false,,,false,false,,2024-01-10T00:00:00.000Z,0
CVE-2023-49043,https://securityvulnerability.io/vulnerability/CVE-2023-49043,Buffer Overflow Vulnerability in Tenda AX1803 Router,"A buffer overflow vulnerability in the Tenda AX1803 router enables remote attackers to execute arbitrary code through manipulation of the wpapsk_crypto parameter within the fromSetWirelessRepeat function. This flaw can be exploited to destabilize the device or gain unauthorized access, highlighting the need for prompt updates and security measures to mitigate potential threats.",Tenda,Ax1803 Firmware,9.8,CRITICAL,0.005630000028759241,false,,false,false,false,,,false,false,,2023-11-27T00:00:00.000Z,0
CVE-2023-49047,https://securityvulnerability.io/vulnerability/CVE-2023-49047,Stack Overflow Vulnerability in Tenda AX1803 Router,"The Tenda AX1803 Router is susceptible to a stack overflow vulnerability caused by improper handling of the 'devName' parameter in the formSetDeviceName function. Attackers could exploit this flaw to execute arbitrary code, potentially compromising the device and the network it is connected to. It is crucial for users of this router to remain vigilant and apply necessary security measures to mitigate risks associated with this vulnerability.",Tenda,Ax1803 Firmware,7.5,HIGH,0.0005699999746866524,false,,false,false,false,,,false,false,,2023-11-27T00:00:00.000Z,0
CVE-2023-49046,https://securityvulnerability.io/vulnerability/CVE-2023-49046,Stack Overflow Vulnerability in Tenda AX1803 Router,"A stack overflow vulnerability exists in the Tenda AX1803 router (version 1.0.0.1), where a remote attacker can exploit the flaw through the 'devName' parameter in the formAddMacfilterRule function. This vulnerability enables the execution of arbitrary code, potentially compromising the router's functionality and security. Users are advised to review their configurations and update their devices to mitigate risks associated with this vulnerability.",Tenda,Ax1803 Firmware,9.8,CRITICAL,0.00558000011369586,false,,false,false,false,,,false,false,,2023-11-27T00:00:00.000Z,0
CVE-2023-49044,https://securityvulnerability.io/vulnerability/CVE-2023-49044,Stack Overflow Vulnerability in Tenda AX1803 Wi-Fi Router,"A stack overflow vulnerability in the Tenda AX1803 router allows remote attackers to execute arbitrary code. This issue is triggered via the 'ssid' parameter in the 'form_fast_setting_wifi_set' function. If exploited, this vulnerability could lead to unauthorized access and potential control over the affected device, posing significant risks to network security and data protection.",Tenda,Ax1803 Firmware,9.8,CRITICAL,0.00558000011369586,false,,false,false,false,,,false,false,,2023-11-27T00:00:00.000Z,0
CVE-2023-49040,https://securityvulnerability.io/vulnerability/CVE-2023-49040,Remote Code Execution Vulnerability in Tenda AX1803 Router,"A vulnerability has been identified in the Tenda AX1803 router, specifically in version 1.0.0.1, that enables remote attackers to execute arbitrary code. This can be achieved through manipulation of the adslPwd parameter in the form_fast_setting_internet_set function, potentially compromising device security and network integrity. It is crucial for users to update their devices and follow best practices for securing IoT devices.",Tenda,Ax1803 Firmware,9.8,CRITICAL,0.005890000145882368,false,,false,false,false,,,false,false,,2023-11-27T00:00:00.000Z,0
CVE-2023-49042,https://securityvulnerability.io/vulnerability/CVE-2023-49042,Heap Overflow Vulnerability in Tenda AX1803 Wireless Router,"A heap overflow vulnerability exists in Tenda AX1803 version 1.0.0.1, which can be exploited by remote attackers to execute arbitrary code. This occurs when user input for the schedStartTime and schedEndTime parameters is not properly validated within the setSchedWifi function. Consequently, malicious entities could take control of the affected device, leading to unauthorized actions and a potential compromise of network security.",Tenda,Ax1803 Firmware,9.8,CRITICAL,0.00558000011369586,false,,false,false,false,,,false,false,,2023-11-27T00:00:00.000Z,0
CVE-2023-48110,https://securityvulnerability.io/vulnerability/CVE-2023-48110,Heap Overflow Vulnerability in Tenda AX1803 Router,"The Tenda AX1803 router has been identified to contain a vulnerability characterized as a heap overflow. This issue is triggered through the 'urls' parameter in the 'saveParentControlInfo' function, which can be exploited by attackers. Successful exploitation can lead to Denial of Service (DoS) attacks, making the router unresponsive and impacting network availability.",Tenda,Ax1803 Firmware,7.5,HIGH,0.0005699999746866524,false,,false,false,false,,,false,false,,2023-11-20T00:00:00.000Z,0
CVE-2023-48109,https://securityvulnerability.io/vulnerability/CVE-2023-48109,Heap Overflow Vulnerability in Tenda AX1803,"The Tenda AX1803 version 1.0.0.1 contains a heap overflow vulnerability that can be exploited through the deviceId parameter in the saveParentControlInfo function. An attacker leveraging this flaw could potentially disrupt service, resulting in Denial of Service (DoS) attacks that severely affect device performance and availability.",Tenda,Ax1803 Firmware,7.5,HIGH,0.0005699999746866524,false,,false,false,false,,,false,false,,2023-11-20T00:00:00.000Z,0
CVE-2023-48111,https://securityvulnerability.io/vulnerability/CVE-2023-48111,Stack Overflow Vulnerability in Tenda AX1803 Router,"The Tenda AX1803 router version 1.0.0.1 is vulnerable to a stack overflow condition caused by improper handling of the 'time' parameter within the 'saveParentControlInfo' function. This flaw allows attackers to exploit the vulnerability, potentially leading to a Denial of Service (DoS) situation where legitimate users are unable to access the router's services. It is crucial for users of this router model to be aware of this risk and take appropriate measures to mitigate any potential attacks.",Tenda,Ax1803 Firmware,7.5,HIGH,0.0005699999746866524,false,,false,false,false,,,false,false,,2023-11-20T00:00:00.000Z,0
CVE-2022-45781,https://securityvulnerability.io/vulnerability/CVE-2022-45781,Buffer Overflow Vulnerability in Tenda AX1803 Router,"A buffer overflow vulnerability in Tenda AX1803 routers allows attackers to execute arbitrary code through the /goform/SetOnlineDevName endpoint. This security flaw can be exploited if the device accepts crafted input that exceeds buffer limits, enabling unauthorized control over the device.",Tenda,Ax1803 Firmware,8.8,HIGH,0.0008900000248104334,false,,false,false,false,,,false,false,,2023-11-14T00:00:00.000Z,0
CVE-2022-40875,https://securityvulnerability.io/vulnerability/CVE-2022-40875,Heap Overflow Vulnerability in Tenda AX1803,"A heap overflow vulnerability was identified in the Tenda AX1803 version 1.0.0.1, specifically in the GetParentControlInfo function. This vulnerability could potentially allow an attacker to exploit the affected product, leading to unauthorized access or exposure of sensitive information.",Tenda,Ax1803 Firmware,7.5,HIGH,0.0008900000248104334,false,,false,false,false,,,false,false,,2022-10-27T00:00:00.000Z,0
CVE-2022-40874,https://securityvulnerability.io/vulnerability/CVE-2022-40874,Heap Overflow Vulnerability in Tenda AX1803 Router,"The Tenda AX1803 v1.0.0.1 has been identified with a vulnerability in the GetParentControlInfo function. This vulnerability manifests as a heap overflow, which can be exploited to execute a denial of service attack. By sending a specially crafted HTTP request, an attacker could potentially disrupt service availability, compromising network integrity and user access.",Tenda,Ax1803 Firmware,7.5,HIGH,0.0008900000248104334,false,,false,false,false,,,false,false,,2022-10-27T00:00:00.000Z,0
CVE-2022-40876,https://securityvulnerability.io/vulnerability/CVE-2022-40876,Stack Overflow Vulnerability in Tenda AX1803 Router,"The Tenda AX1803 v1.0.0.1 is susceptible to a stack overflow that occurs in the functions handling HTTP requests, specifically fromAdvSetMacMtuWan. This vulnerability can be exploited to potentially allow remote code execution, posing significant security risks to the device and its connected network. Ensuring devices are updated and properly secured is crucial to mitigate the risks associated with this vulnerability.",Tenda,Ax1803 Firmware,9.8,CRITICAL,0.009089999832212925,false,,false,false,false,,,false,false,,2022-10-27T00:00:00.000Z,0
CVE-2022-42087,https://securityvulnerability.io/vulnerability/CVE-2022-42087,Cross Site Request Forgery in Tenda AX1803 Router,"The Tenda AX1803 router is susceptible to a Cross Site Request Forgery (CSRF) attack through its fromSysToolReboot function. This vulnerability allows an attacker to perform unauthorized actions on behalf of an authenticated user without their consent, potentially compromising the security of the device and the network it is connected to.",Tenda,Ax1803 Firmware,6.5,MEDIUM,0.0006799999973736703,false,,false,false,false,,,false,false,,2022-10-12T00:00:00.000Z,0
CVE-2022-42086,https://securityvulnerability.io/vulnerability/CVE-2022-42086,Cross Site Request Forgery Vulnerability in Tenda AX1803 Product by Tenda,"The Tenda AX1803 is susceptible to a Cross Site Request Forgery (CSRF) vulnerability in the TendaAteMode function. This security flaw allows unauthorized commands to be transmitted from a user that the web application trusts, potentially leading to various forms of attack and unauthorized changes to the system configuration.",Tenda,Ax1803 Firmware,6.5,MEDIUM,0.0006799999973736703,false,,false,false,false,,,false,false,,2022-10-12T00:00:00.000Z,0
CVE-2022-37822,https://securityvulnerability.io/vulnerability/CVE-2022-37822,Stack Overflow Vulnerability in Tenda AX1803 Router,"The Tenda AX1803 router contains a stack overflow vulnerability that can be exploited through the function fromSetRouteStatic. This flaw may allow attackers to manipulate the device's memory, potentially leading to arbitrary code execution or denial of service. Users are advised to review the impacts of this vulnerability to ensure proper network security measures are in place.",Tenda,Ax1803 Firmware,7.8,HIGH,0.0004799999878741801,false,,false,false,false,,,false,false,,2022-08-25T14:07:22.000Z,0
CVE-2022-37820,https://securityvulnerability.io/vulnerability/CVE-2022-37820,Stack Overflow Vulnerability in Tenda AX1803 Router,"A stack overflow vulnerability has been identified in the Tenda AX1803 router, specifically within the ddnsEn parameter of the formSetSysToolDDNS function. This vulnerability could potentially allow an attacker to execute arbitrary code through crafted input, leading to unauthorized access or disruption of service. Users are advised to apply security patches and follow best practices for router configuration to mitigate the risks associated with this vulnerability.",Tenda,Ax1803 Firmware,7.8,HIGH,0.0004799999878741801,false,,false,false,false,,,false,false,,2022-08-25T14:07:15.000Z,0
CVE-2022-37824,https://securityvulnerability.io/vulnerability/CVE-2022-37824,Stack Overflow Vulnerability in Tenda AX1803 Router,"The Tenda AX1803 router version 1.0.0.1 is identified to have a stack overflow vulnerability originating from the shareSpeed parameter within the fromSetWifiGusetBasic function. This flaw may allow an attacker to execute arbitrary code, potentially leading to unauthorized access or disruption of service on the device. Users are advised to apply relevant patches and updates to mitigate security risks.",Tenda,Ax1803 Firmware,7.8,HIGH,0.0004799999878741801,false,,false,false,false,,,false,false,,2022-08-25T14:07:06.000Z,0
CVE-2022-37817,https://securityvulnerability.io/vulnerability/CVE-2022-37817,Stack Overflow Vulnerability in Tenda AX1803 Router,"The Tenda AX1803 v1.0.0.1 router is affected by a stack overflow vulnerability in the fromSetIpMacBind function. This flaw may allow attackers to execute arbitrary code, potentially compromising the integrity and availability of the device. Immediate attention is required to safeguard networks against potential exploitations.",Tenda,Ax1803 Firmware,7.8,HIGH,0.0004799999878741801,false,,false,false,false,,,false,false,,2022-08-25T14:07:06.000Z,0