cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-44552,https://securityvulnerability.io/vulnerability/CVE-2024-44552,Stack Overflow Vulnerability in Tenda AX1806 Router,"The Tenda AX1806 router version v1.0.0.1 has been identified to have a stack overflow vulnerability originating from the improper validation of the adv.iptv.stballvlans parameter in the formGetIptv function. This flaw can potentially be exploited by attackers to execute arbitrary code, leading to unauthorized access or control over the device. It is crucial for users of the affected product to apply appropriate security measures to mitigate potential risks associated with this vulnerability.",Tenda,Ax1806 Firmware,9.8,CRITICAL,0.0012400000123307109,false,,false,false,false,,,false,false,,2024-08-26T00:00:00.000Z,0
CVE-2024-44565,https://securityvulnerability.io/vulnerability/CVE-2024-44565,Buffer Overflow Vulnerability in Tenda AX1806 Product,"The Tenda AX1806 v1.0.0.1 is susceptible to a stack overflow vulnerability that occurs through improper handling of the serverName parameter in the form_fast_setting_internet_set function. This flaw can be exploited to induce unexpected behavior in the device, potentially allowing an attacker to execute arbitrary code or cause a denial of service. Proper input validation and boundaries should be implemented to mitigate this security risk and protect network integrity.",Tenda,Ax1806 Firmware,9.8,CRITICAL,0.0012100000167265534,false,,false,false,false,,,false,false,,2024-08-26T00:00:00.000Z,0
CVE-2024-44563,https://securityvulnerability.io/vulnerability/CVE-2024-44563,Stack Overflow Vulnerability in Tenda AX1806 Router,"A vulnerability has been identified in the Tenda AX1806 router, specifically a stack overflow issue triggered by improper handling of the iptv.stb.port parameter in the setIptvInfo function. This security flaw can potentially allow attackers to execute arbitrary code or manipulate system functionalities, leading to unauthorized access or disruption of service. Users of the affected version are advised to be aware of this vulnerability and apply available security patches to safeguard their systems.",Tenda,Ax1806 Firmware,9.8,CRITICAL,0.0012100000167265534,false,,false,false,false,,,false,false,,2024-08-26T00:00:00.000Z,0
CVE-2024-44558,https://securityvulnerability.io/vulnerability/CVE-2024-44558,Stack Overflow Vulnerability in Tenda AX1806 Router,"A stack overflow vulnerability has been identified in the Tenda AX1806 router, specifically within the function setIptvInfo when handling the adv.iptv.stbpvid parameter. This flaw allows attackers to exploit the router's functionality by sending specially crafted requests, potentially leading to unauthorized access or execution of arbitrary code. Users of Tenda AX1806 version 1.0.0.1 should take precautions to secure their devices and apply any available updates to mitigate this vulnerability.",Tenda,Ax1806 Firmware,9.8,CRITICAL,0.0012100000167265534,false,,false,false,false,,,false,false,,2024-08-26T00:00:00.000Z,0
CVE-2024-44557,https://securityvulnerability.io/vulnerability/CVE-2024-44557,Stack Overflow Vulnerability in Tenda AX1806 by Tenda,"The Tenda AX1806 version 1.0.0.1 is susceptible to a stack overflow vulnerability that can be triggered through the iptv.stb.mode parameter within the setIptvInfo function. This flaw may allow attackers to execute arbitrary code by providing specially crafted input, potentially compromising the device's stability and security. Users of the affected version should evaluate their exposure to this vulnerability and take necessary precautions.",Tenda,Ax1806 Firmware,9.8,CRITICAL,0.0012100000167265534,false,,false,false,false,,,false,false,,2024-08-26T00:00:00.000Z,0
CVE-2024-44556,https://securityvulnerability.io/vulnerability/CVE-2024-44556,Stack Overflow Vulnerability in Tenda AX1806 Router,"The Tenda AX1806 router version 1.0.0.1 is susceptible to a stack overflow vulnerability. This issue arises from improper handling of the adv.iptv.stballvlans parameter within the setIptvInfo function. Exploitation of this vulnerability may allow an attacker to execute arbitrary code or cause a denial of service, potentially compromising the integrity and availability of the impacted device.",Tenda,Ax1806 Firmware,9.8,CRITICAL,0.0012100000167265534,false,,false,false,false,,,false,false,,2024-08-26T00:00:00.000Z,0
CVE-2024-44555,https://securityvulnerability.io/vulnerability/CVE-2024-44555,Stack Overflow Vulnerability in Tenda AX1806 Router,"The Tenda AX1806 router, version 1.0.0.1, is susceptible to a stack overflow vulnerability stemming from improper handling of the iptv.city.vlan parameter within the setIptvInfo function. Exploiting this vulnerability could allow an attacker to manipulate the stack memory, potentially leading to remote code execution or system instability. Users of the affected version are encouraged to review security guidelines and apply necessary patches to mitigate associated risks.",Tenda,Ax1806 Firmware,9.8,CRITICAL,0.0012400000123307109,false,,false,false,false,,,false,false,,2024-08-26T00:00:00.000Z,0
CVE-2024-44553,https://securityvulnerability.io/vulnerability/CVE-2024-44553,Stack Overflow Vulnerability in Tenda AX1806 Router,"The Tenda AX1806 router, specifically version 1.0.0.1, exhibits a vulnerability characterized by a stack overflow. This is triggered through the iptv.stb.mode parameter in the function formGetIptv. The flaw allows an attacker to exploit this overflow, potentially leading to unauthorized access or execution of arbitrary code. As a result, users are advised to review their device configurations and stay updated with security patches.",Tenda,Ax1806 Firmware,9.8,CRITICAL,0.0012100000167265534,false,,false,false,false,,,false,false,,2024-08-26T00:00:00.000Z,0
CVE-2024-44549,https://securityvulnerability.io/vulnerability/CVE-2024-44549,Stack Overflow Vulnerability in Tenda AX1806 by Tenda,The Tenda AX1806 v1.0.0.1 is vulnerable to a stack overflow caused by improper handling of the iptv.stb.port parameter within the formGetIptv function. This flaw can potentially allow remote attackers to execute arbitrary code and compromise the device. Users are advised to implement necessary security measures and monitor for any patches or updates from Tenda that address this vulnerability.,Tenda,Ax1806 Firmware,9.8,CRITICAL,0.0012100000167265534,false,,false,false,false,,,false,false,,2024-08-26T00:00:00.000Z,0
CVE-2024-44550,https://securityvulnerability.io/vulnerability/CVE-2024-44550,Stack Overflow Vulnerability in Tenda AX1806 Router,"The Tenda AX1806 router version 1.0.0.1 is susceptible to a stack overflow vulnerability due to improper handling of input in the adv.iptv.stbpvid parameter within the formGetIptv function. This flaw may allow an attacker to exploit the vulnerability, potentially leading to unintended behaviors or crashes in the affected router.",Tenda,Ax1806 Firmware,9.8,CRITICAL,0.0012100000167265534,false,,false,false,false,,,false,false,,2024-08-26T00:00:00.000Z,0
CVE-2024-44551,https://securityvulnerability.io/vulnerability/CVE-2024-44551,Stack Overflow Vulnerability in Tenda AX1806 by Tenda,"The Tenda AX1806 v1.0.0.1 is susceptible to a stack overflow vulnerability that affects the function formGetIptv. This vulnerability arises from the improper handling of the iptv.city.vlan parameter, which can be exploited by attackers to cause unintended behavior in the device, potentially leading to denial of service or remote code execution. It is crucial for users and administrators of affected Tenda devices to take necessary precautions and apply appropriate security measures.",Tenda,Ax1806 Firmware,9.8,CRITICAL,0.0012400000123307109,false,,false,false,false,,,false,false,,2024-08-26T00:00:00.000Z,0
CVE-2024-40415,https://securityvulnerability.io/vulnerability/CVE-2024-40415,Stack-Based Buffer Overflow Vulnerability in Tenda AX1806 Firmware,"A vulnerability exists in the Tenda AX1806 firmware (version 1.0.0.1) within the /goform/SetStaticRouteCfg function, specifically in sub_519F4. This issue is characterized by a stack-based buffer overflow, which can potentially allow an attacker to execute arbitrary code, leading to unauthorized access and significant risks to device functionality and data integrity. Immediate attention is required to safeguard against exploitation.",Tenda,Ax1806 Firmware,9.8,CRITICAL,0.000910000002477318,false,,false,false,false,,,false,false,,2024-07-15T18:15:00.000Z,0
CVE-2024-40416,https://securityvulnerability.io/vulnerability/CVE-2024-40416,Stack-Based Buffer Overflow Vulnerability in Tenda AX1806 Firmware,"A vulnerability found in the Tenda AX1806 firmware 1.0.0.1 compromises system integrity via a stack-based buffer overflow in the SetVirtualServerCfg function located within the /goform endpoint. This flaw arises from insufficient bounds checking on user-supplied input, allowing attackers to potentially manipulate memory and execute arbitrary code. Timely patching and security measures are crucial to mitigate the risks associated with this vulnerability.",Tenda,Ax1806 Firmware,9.8,CRITICAL,0.0008800000068731606,false,,false,false,false,,,false,false,,2024-07-15T18:15:00.000Z,0
CVE-2024-40414,https://securityvulnerability.io/vulnerability/CVE-2024-40414,Stack-Based Buffer Overflow Vulnerability in Tenda AX1806 Firmware,"A stack-based buffer overflow vulnerability has been identified in the Tenda AX1806 firmware version 1.0.0.1, specifically within the /goform/SetNetControlList function. This vulnerability could allow an attacker to exploit the stack memory and inject arbitrary code, potentially leading to unauthorized access or denial of service. Users and administrators of affected devices should apply the necessary security measures to mitigate any risks associated with this vulnerability.",Tenda,Ax1806 Firmware,9.8,CRITICAL,0.0008800000068731606,false,,false,false,false,,,false,false,,2024-07-15T17:15:00.000Z,0
CVE-2024-4239,https://securityvulnerability.io/vulnerability/CVE-2024-4239,Stack-Based Buffer Overflow in Tenda AX1806 Devices,"The Tenda AX1806 model 1.0.0.1 exhibits a critical vulnerability linked to a stack-based buffer overflow in the function formSetRebootTimer, located in the /goform/SetRebootTimer file. This flaw allows an attacker to manipulate the rebootTime argument, which can lead to remote code execution. Since the vulnerability has been publicly disclosed, it is crucial for users of the affected devices to implement necessary security measures. Notably, Tenda's lack of response to early disclosure attempts raises concerns about the company's commitment to user security.",Tenda,Ax1806 Firmware,8.8,HIGH,0.0022100000642240047,false,,false,false,false,,,false,false,,2024-04-26T21:15:00.000Z,0
CVE-2024-4238,https://securityvulnerability.io/vulnerability/CVE-2024-4238,Stack-Based Buffer Overflow in Tenda AX1806 Device Name Functionality,"A critical security vulnerability exists in the Tenda AX1806 router, specifically within the formSetDeviceName function located in the /goform/SetOnlineDevName endpoint. This issue is characterized by a stack-based buffer overflow, which can be exploited remotely by an attacker. Manipulating the 'devName' argument within this function allows for malicious code execution, creating a significant risk for devices on affected networks. The vulnerability has been publicly disclosed but remains unaddressed, as the vendor has not responded to inquiries about remediation. It is crucial for users of the Tenda AX1806 to implement immediate security measures and monitor for any potential exploitation attempts.",Tenda,Ax1806 Firmware,8.8,HIGH,0.0022100000642240047,false,,false,false,false,,,false,false,,2024-04-26T20:15:00.000Z,0
CVE-2024-4237,https://securityvulnerability.io/vulnerability/CVE-2024-4237,Remote Buffer Overflow Vulnerability in Tenda AX1806,"A serious vulnerability has been identified in the Tenda AX1806 router's firmware version 1.0.0.1. The vulnerability resides in the R7WebsSecurityHandler function within the '/goform/execCommand' file. An attacker can exploit this flaw by manipulating the 'password' argument, leading to a stack-based buffer overflow. This allows for remote execution of malicious code, putting users' data and network security at high risk. The vulnerability has been publicly disclosed, and despite an early warning to Tenda, the company has not provided any response. Users of the affected product should take immediate steps to secure their devices and monitor for suspicious activity.",Tenda,Ax1806,8.8,HIGH,0.0022100000642240047,false,,false,false,true,2024-04-26T18:15:00.000Z,true,false,false,,2024-04-26T19:15:00.000Z,0
CVE-2023-47455,https://securityvulnerability.io/vulnerability/CVE-2023-47455,Heap Overflow Vulnerability in Tenda AX1806 Router,"The Tenda AX1806 V1.0.0.1 router has a heap overflow vulnerability within the setSchedWifi function. This vulnerability arises because the function retrieves values for schedStartTime and schedEndTime directly from HTTP request parameters without proper size validation. This oversight can potentially allow an attacker to manipulate memory, leading to unauthorized access or denial of service. Users of the affected device should take immediate action to mitigate risks associated with this vulnerability.",Tenda,Ax1806 Firmware,9.1,CRITICAL,0.0005799999926239252,false,,false,false,false,,,false,false,,2023-11-07T00:00:00.000Z,0
CVE-2023-47456,https://securityvulnerability.io/vulnerability/CVE-2023-47456,Stack Overflow Vulnerability in Tenda AX1806 Wireless Repeter,"The Tenda AX1806 V1.0.0.1 has a stack overflow vulnerability located in the function sub_455D4, which is triggered by calls from the fromSetWirelessRepeat function. This flaw can compromise the integrity of the device and expose networks to potential threats, emphasizing the importance of regular vulnerability assessments and timely updates to enhance security.",Tenda,Ax1806 Firmware,9.1,CRITICAL,0.0005799999926239252,false,,false,false,false,,,false,false,,2023-11-07T00:00:00.000Z,0
CVE-2022-34597,https://securityvulnerability.io/vulnerability/CVE-2022-34597,Command Injection Vulnerability in Tenda AX1806 Router,"The Tenda AX1806 router is susceptible to a command injection vulnerability that arises from improper validation in the WanParameterSetting function. This flaw allows an attacker to execute arbitrary commands on the affected device, potentially compromising the integrity and confidentiality of the network. Exploitation of this vulnerability could lead to unauthorized access and manipulation of device settings, highlighting the need for immediate remediation.",Tenda,Ax1806 Firmware,9.8,CRITICAL,0.011130000464618206,false,,false,false,false,,,false,false,,2022-07-06T17:00:38.000Z,0
CVE-2022-32030,https://securityvulnerability.io/vulnerability/CVE-2022-32030,Stack Overflow Vulnerability in Tenda AX1806 Router,"The Tenda AX1806 router version 1.0.0.1 has been found to be vulnerable to a stack overflow via the list parameter in the function formSetQosBand. This vulnerability could potentially be exploited by an attacker to execute arbitrary code, leading to unauthorized access or control over the device. It is critical for users of this router to update their firmware to mitigate the risk associated with this vulnerability.",Tenda,Ax1806 Firmware,7.5,HIGH,0.0010400000028312206,false,,false,false,false,,,false,false,,2022-07-01T18:15:00.000Z,0
CVE-2022-32031,https://securityvulnerability.io/vulnerability/CVE-2022-32031,Stack Overflow Vulnerability in Tenda AX1806 Router,"The Tenda AX1806 router version 1.0.0.1 is susceptible to a stack overflow issue stemming from improper handling of user input in the 'list' parameter of the 'fromSetRouteStatic' function. This flaw could be exploited by attackers to manipulate the device's stack memory, potentially leading to unauthorized access or control over the device. It is crucial for users to apply any available updates and ensure proper security measures to mitigate the risks associated with this vulnerability.",Tenda,Ax1806 Firmware,7.5,HIGH,0.0010400000028312206,false,,false,false,false,,,false,false,,2022-07-01T17:28:03.000Z,0
CVE-2022-32032,https://securityvulnerability.io/vulnerability/CVE-2022-32032,Stack Overflow Vulnerability in Tenda AX1806 Router,"The Tenda AX1806 v1.0.0.1 has been identified to possess a stack overflow vulnerability through the deviceList parameter in the formAddMacfilterRule function. This flaw could potentially allow attackers to execute arbitrary code or cause the device to crash, leading to disruptions in service.",Tenda,Ax1806 Firmware,9.8,CRITICAL,0.0027000000700354576,false,,false,false,false,,,false,false,,2022-07-01T17:28:02.000Z,0
CVE-2022-32033,https://securityvulnerability.io/vulnerability/CVE-2022-32033,Stack Overflow Vulnerability in Tenda AX1806 by Tenda,"The Tenda AX1806 router in version 1.0.0.1 is susceptible to a stack overflow issue in the formSetVirtualSer function. This vulnerability may allow an attacker to execute arbitrary code or cause instability in the device, potentially leading to unauthorized control over network operations. It highlights the importance of ensuring firmware is up to date to mitigate risks associated with such vulnerabilities.",Tenda,Ax1806 Firmware,7.5,HIGH,0.0010400000028312206,false,,false,false,false,,,false,false,,2022-07-01T17:28:01.000Z,0
CVE-2022-28973,https://securityvulnerability.io/vulnerability/CVE-2022-28973,Stack Overflow Vulnerability in Tenda AX1806 Router,"The Tenda AX1806 router, version v1.0.0.1, is susceptible to a stack overflow through the wanMTU parameter in the function fromAdvSetMacMtuWan. This vulnerability can be exploited by attackers to cause a Denial of Service (DoS), rendering the device unresponsive and disrupting network connectivity.",Tenda,Ax1806 Firmware,7.5,HIGH,0.001180000021122396,false,,false,false,false,,,false,false,,2022-05-06T13:08:42.000Z,0