Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Ch22_firmware
(Tenda)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 4 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2025-06-05 | CVE-2025-5685 | A vulnerability, which was classified as critical, was found in Tenda CH22 1.0.0.1. This affects the function formNatlimit of the file /goform/Natlimit. The manipulation of the argument page leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. | Ch22_firmware | 9.8 | ||
| 2025-06-04 | CVE-2025-5619 | A vulnerability, which was classified as critical, has been found in Tenda CH22 1.0.0.1. This issue affects the function formaddUserName of the file /goform/addUserName. The manipulation of the argument Password leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. | Ch22_firmware | 9.8 | ||
| 2024-09-13 | CVE-2024-46045 | Tenda CH22 V1.0.0.6(468) has a stack overflow vulnerability located in the frmL7PlotForm function. | Ch22_firmware | 9.8 | ||
| 2024-09-13 | CVE-2024-46044 | CH22 V1.0.0.6(468) has a stack overflow vulnerability located in the fromqossetting function. | Ch22_firmware | 9.8 |