Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Ax1803_firmware
(Tenda)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 51 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2023-11-20 | CVE-2023-48109 | Tenda AX1803 v1.0.0.1 was discovered to contain a heap overflow via the deviceId parameter in the function saveParentControlInfo . This vulnerability allows attackers to cause a Denial of Service (DoS) attack | Ax1803_firmware | 7.5 | ||
| 2023-11-20 | CVE-2023-48110 | Tenda AX1803 v1.0.0.1 was discovered to contain a heap overflow via the urls parameter in the function saveParentControlInfo . This vulnerability allows attackers to cause a Denial of Service (DoS) attack | Ax1803_firmware | 7.5 | ||
| 2023-11-20 | CVE-2023-48111 | Tenda AX1803 v1.0.0.1 was discovered to contain a stack overflow via the time parameter in the function saveParentControlInfo . This vulnerability allows attackers to cause a Denial of Service (DoS) attack | Ax1803_firmware | 7.5 | ||
| 2023-11-27 | CVE-2023-49043 | Buffer Overflow vulnerability in Tenda AX1803 v.1.0.0.1 allows a remote attacker to execute arbitrary code via the wpapsk_crypto parameter in the function fromSetWirelessRepeat. | Ax1803_firmware | 9.8 | ||
| 2023-11-27 | CVE-2023-49046 | Stack Overflow vulnerability in Tenda AX1803 v.1.0.0.1 allows a remote attacker to execute arbitrary code via the devName parameter in the function formAddMacfilterRule. | Ax1803_firmware | 9.8 | ||
| 2023-11-27 | CVE-2023-49040 | An issue in Tneda AX1803 v.1.0.0.1 allows a remote attacker to execute arbitrary code via the adslPwd parameter in the form_fast_setting_internet_set function. | Ax1803_firmware | 9.8 | ||
| 2023-11-27 | CVE-2023-49042 | Heap Overflow vulnerability in Tenda AX1803 v.1.0.0.1 allows a remote attacker to execute arbitrary code via the schedStartTime parameter or the schedEndTime parameter in the function setSchedWifi. | Ax1803_firmware | 9.8 | ||
| 2023-11-27 | CVE-2023-49047 | Tenda AX1803 v1.0.0.1 contains a stack overflow via the devName parameter in the function formSetDeviceName. | Ax1803_firmware | 7.5 | ||
| 2023-11-27 | CVE-2023-49044 | Stack Overflow vulnerability in Tenda AX1803 v.1.0.0.1 allows a remote attacker to execute arbitrary code via the ssid parameter in the function form_fast_setting_wifi_set. | Ax1803_firmware | 9.8 | ||
| 2024-01-10 | CVE-2023-51971 | Tenda AX1803 v1.0.0.1 contains a stack overflow via the adv.iptv.stbpvid parameter in the function getIptvInfo. | Ax1803_firmware | 9.8 |