Ax1803_firmware - Vulncode-DB

Note:

This project will be discontinued after December 13, 2021. [more]

Product:
Ax1803_firmware
(Tenda)

Repositories	Unknown: This might be proprietary software.
#Vulnerabilities	53

Date	Id	Summary	Products	Score	Patch	Annotated
2024-01-10	CVE-2023-51960	Tenda AX1803 v1.0.0.1 contains a stack overflow via the iptv.city.vlan parameter in the function formGetIptv.	Ax1803_firmware	9.8
2024-01-10	CVE-2023-51968	Tenda AX1803 v1.0.0.1 contains a stack overflow via the adv.iptv.stballvlans parameter in the function getIptvInfo.	Ax1803_firmware	9.8
2024-01-10	CVE-2023-51955	Tenda AX1803 v1.0.0.1 contains a stack overflow via the adv.iptv.stballvlans parameter in the function formSetIptv.	Ax1803_firmware	9.8
2024-01-10	CVE-2023-51971	Tenda AX1803 v1.0.0.1 contains a stack overflow via the adv.iptv.stbpvid parameter in the function getIptvInfo.	Ax1803_firmware	9.8
2024-01-10	CVE-2023-51954	Tenda AX1803 v1.0.0.1 contains a stack overflow via the iptv.stb.port parameter in the function formSetIptv.	Ax1803_firmware	9.8
2024-01-10	CVE-2023-51956	Tenda AX1803 v1.0.0.1 contains a stack overflow via the iptv.city.vlan parameter in the function formSetIptv	Ax1803_firmware	9.8
2024-01-10	CVE-2023-51964	Tenda AX1803 v1.0.0.1 contains a stack overflow via the iptv.stb.port parameter in the function setIptvInfo.	Ax1803_firmware	9.8
2022-10-12	CVE-2022-42086	Tenda AX1803 US_AX1803v2.0br_v1.0.0.1_2994_CN_ZGYD01_4 is vulnerable to Cross Site Request Forgery (CSRF) via function TendaAteMode.	Ax1803_firmware	6.5
2022-10-12	CVE-2022-42087	Tenda AX1803 US_AX1803v2.0br_v1.0.0.1_2994_CN_ZGYD01_4 is vulnerable to Cross Site Request Forgery (CSRF) via function fromSysToolReboot.	Ax1803_firmware	6.5
2022-10-27	CVE-2022-40874	Tenda AX1803 v1.0.0.1 was discovered to contain a heap overflow vulnerability in the GetParentControlInfo function, which can cause a denial of service attack through a carefully constructed http request.	Ax1803_firmware	7.5