cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-11650,https://securityvulnerability.io/vulnerability/CVE-2024-11650,Null Pointer Dereference Vulnerability in Tenda i9 Router,"CVE-2024-11650 highlights a critical vulnerability in the Tenda i9 router, specifically within the websReadEvent function, which is located in the /goform/GetIPTV file. This flaw leads to a null pointer dereference, allowing remote attackers to exploit the system without needing physical access. The vulnerability has been publicly disclosed, increasing the urgency for users to patch their devices. All users of Tenda i9 version 1.0.0.8(3828) should be alert to this vulnerability and ensure their devices are updated to safeguard against potential exploits.",Tenda,I9,,,0.00044999999227002263,false,,false,false,true,2024-11-25T02:00:15.000Z,true,false,false,,2024-11-25T02:00:15.883Z,0
CVE-2024-0996,https://securityvulnerability.io/vulnerability/CVE-2024-0996,Tenda i9 httpd setcfm formSetCfm stack-based overflow,"A significant vulnerability has been identified in Tenda's Tenda i9 model version 1.0.0.9(4122), specifically within the formSetCfm function located in the /goform/setcfm file of the httpd component. This vulnerability arises from a stack-based buffer overflow triggered by manipulation of the argument funcpara1. The flaw allows for remote exploitation, posing a serious risk to users. Despite prior disclosure of this vulnerability to the vendor, there has been no response, emphasizing the urgent need for awareness and mitigation strategies among affected users.",Tenda,i9,9.8,CRITICAL,0.009189999662339687,false,,false,false,true,2024-01-29T02:31:04.000Z,true,false,false,,2024-01-29T02:31:04.436Z,0
CVE-2022-40106,https://securityvulnerability.io/vulnerability/CVE-2022-40106,Buffer Overflow in Tenda i9 Router,"The Tenda i9 router version 1.0.0.8(3828) is affected by a buffer overflow vulnerability in the set_local_time function. An attacker can exploit this flaw by sending a specially crafted string, potentially leading to a Denial of Service (DoS) condition. Users are advised to review their device configurations and apply necessary security measures to mitigate risks associated with this vulnerability.",Tenda,I9 Firmware,7.5,HIGH,0.0008900000248104334,false,,false,false,false,,,false,false,,2022-09-23T18:54:33.000Z,0
CVE-2022-40107,https://securityvulnerability.io/vulnerability/CVE-2022-40107,Buffer Overflow Vulnerability in Tenda i9 by Tenda,"The Tenda i9 router version 1.0.0.8(3828) is susceptible to a buffer overflow in the formexeCommand function. This vulnerability can be exploited by attackers to execute a Denial of Service (DoS) attack by sending a specially crafted string, which may compromise the availability of the device. It is crucial for users to apply any available patches and security updates to mitigate this risk.",Tenda,I9 Firmware,7.5,HIGH,0.0008900000248104334,false,,false,false,false,,,false,false,,2022-09-23T18:54:33.000Z,0
CVE-2022-40105,https://securityvulnerability.io/vulnerability/CVE-2022-40105,Buffer Overflow Vulnerability in Tenda i9 by Tenda,"The Tenda i9 router version 1.0.0.8(3828) is vulnerable to a buffer overflow due to improper validation in the formWifiMacFilterGet function. This flaw can be exploited by attackers sending specially crafted strings, potentially resulting in a Denial of Service (DoS) condition. Users are advised to evaluate their devices and apply necessary mitigations to prevent exploitation.",Tenda,I9 Firmware,7.5,HIGH,0.0008900000248104334,false,,false,false,false,,,false,false,,2022-09-23T18:54:32.000Z,0
CVE-2022-40104,https://securityvulnerability.io/vulnerability/CVE-2022-40104,Buffer Overflow Vulnerability in Tenda i9 Router,"The Tenda i9 router version 1.0.0.8(3828) is prone to a buffer overflow vulnerability in the formwrlSSIDget function. An attacker can exploit this vulnerability by sending a specially crafted string to the affected function, which may result in a Denial of Service (DoS) condition, disrupting the normal operation of the device. This highlights the importance of securing IoT devices against potential exploitation.",Tenda,I9 Firmware,7.5,HIGH,0.0008900000248104334,false,,false,false,false,,,false,false,,2022-09-23T18:54:31.000Z,0
CVE-2022-40103,https://securityvulnerability.io/vulnerability/CVE-2022-40103,Buffer Overflow Vulnerability in Tenda i9 Router,"The Tenda i9 router version v1.0.0.8(3828) is susceptible to a buffer overflow vulnerability through the formSetAutoPing function. This security flaw allows malicious actors to craft a specific input string that can trigger the vulnerability, potentially leading to a Denial of Service (DoS) condition. As a result, the router may become unresponsive, limiting user access and impacting network reliability. It is crucial for users to implement available security measures and updates to mitigate the risks associated with this vulnerability.",Tenda,I9 Firmware,5.5,MEDIUM,0.0005000000237487257,false,,false,false,false,,,false,false,,2022-09-23T18:54:30.000Z,0
CVE-2022-40102,https://securityvulnerability.io/vulnerability/CVE-2022-40102,Buffer Overflow Vulnerability in Tenda i9 by Tenda,"The Tenda i9 version 1.0.0.8(3828) has a vulnerability that allows an attacker to exploit a buffer overflow in the formwrlSSIDset function. By providing a specially crafted string, an attacker can trigger a Denial of Service (DoS) condition, potentially disrupting the normal operation of the device and affecting network availability.",Tenda,I9 Firmware,7.5,HIGH,0.0008900000248104334,false,,false,false,false,,,false,false,,2022-09-23T18:54:30.000Z,0
CVE-2022-40101,https://securityvulnerability.io/vulnerability/CVE-2022-40101,Buffer Overflow Vulnerability in Tenda i9 Product,"The Tenda i9 device version v1.0.0.8(3828) has been identified to contain a vulnerability due to a buffer overflow within the 'formWifiMacFilterSet' function. This flaw enables adversaries to exploit the vulnerability by sending maliciously crafted strings, potentially leading to a Denial of Service (DoS) condition, which disrupts the normal operation of the device and may impact the overall network integrity.",Tenda,I9 Firmware,7.5,HIGH,0.0008900000248104334,false,,false,false,false,,,false,false,,2022-09-23T18:54:29.000Z,0
CVE-2022-40100,https://securityvulnerability.io/vulnerability/CVE-2022-40100,Command Injection Vulnerability in Tenda i9 Router,"The Tenda i9 version 1.0.0.8 has a command injection vulnerability found in its FormexeCommand function, allowing attackers to execute arbitrary commands on the device. This vulnerability can lead to unauthorized access and manipulation of the router's functionalities, posing significant security risks to users who have not applied necessary patches.",Tenda,I9 Firmware,9.8,CRITICAL,0.001550000044517219,false,,false,false,false,,,false,false,,2022-09-23T18:54:28.000Z,0