Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Ax9_firmware
(Tenda)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 8 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2023-12-07 | CVE-2023-49429 | Tenda AX9 V22.03.01.46 was discovered to contain a SQL command injection vulnerability in the 'setDeviceInfo' feature through the 'mac' parameter at /goform/setModules. | Ax9_firmware | 9.8 | ||
| 2023-12-07 | CVE-2023-49430 | Tenda AX9 V22.03.01.46 has been found to contain a stack overflow vulnerability in the 'list' parameter at /goform/SetStaticRouteCfg. | Ax9_firmware | 9.8 | ||
| 2023-12-07 | CVE-2023-49431 | Tenda AX9 V22.03.01.46 has been discovered to contain a command injection vulnerability in the 'mac' parameter at /goform/SetOnlineDevName. | Ax9_firmware | 9.8 | ||
| 2023-12-07 | CVE-2023-49432 | Tenda AX9 V22.03.01.46 has been found to contain a stack overflow vulnerability in the 'deviceList' parameter at /goform/setMacFilterCfg. | Ax9_firmware | 9.8 | ||
| 2023-12-07 | CVE-2023-49433 | Tenda AX9 V22.03.01.46 has been found to contain a stack overflow vulnerability in the 'list' parameter at /goform/SetVirtualServerCfg. | Ax9_firmware | 9.8 | ||
| 2023-12-07 | CVE-2023-49434 | Tenda AX9 V22.03.01.46 has been found to contain a stack overflow vulnerability in the 'list' parameter at /goform/SetNetControlList. | Ax9_firmware | 9.8 | ||
| 2023-12-07 | CVE-2023-49435 | Tenda AX9 V22.03.01.46 is vulnerable to command injection. | Ax9_firmware | 9.8 | ||
| 2023-12-07 | CVE-2023-49436 | Tenda AX9 V22.03.01.46 has been discovered to contain a command injection vulnerability in the 'list' parameter at /goform/SetNetControlList. | Ax9_firmware | 9.8 |