Note:
This project will be discontinued after December 13, 2021. [more]
Product:
M3_firmware
(Tenda)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 35 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2022-08-28 | CVE-2022-38563 | Tenda M3 V1.0.0.12(4856) was discovered to contain a heap buffer overflow vulnerability in the function formSetFixTools. This vulnerability allows attackers to cause a Denial of Service (DoS) via the MACAddr parameter. | M3_firmware | 7.5 | ||
| 2022-08-28 | CVE-2022-38564 | Tenda M3 V1.0.0.12(4856) was discovered to contain a buffer overflow vulnerability in the function formSetPicListItem. This vulnerability allows attackers to cause a Denial of Service (DoS) via the adItemUID parameter. | M3_firmware | 7.5 | ||
| 2022-08-28 | CVE-2022-38567 | Tenda M3 V1.0.0.12(4856) was discovered to contain a stack overflow vulnerability in the function formSetAdConfigInfo. This vulnerability allows attackers to cause a Denial of Service (DoS) via the authIPs parameter. | M3_firmware | 7.5 | ||
| 2022-08-28 | CVE-2022-38565 | Tenda M3 V1.0.0.12(4856) was discovered to contain a heap buffer overflow vulnerability in the function formEmailTest. This vulnerability allows attackers to cause a Denial of Service (DoS) via the mailpwd parameter. | M3_firmware | 7.5 | ||
| 2022-08-28 | CVE-2022-38566 | Tenda M3 V1.0.0.12(4856) was discovered to contain a heap buffer overflow vulnerability in the function formEmailTest. This vulnerability allows attackers to cause a Denial of Service (DoS) via the mailname parameter. | M3_firmware | 7.5 | ||
| 2022-08-28 | CVE-2022-38568 | Tenda M3 V1.0.0.12(4856) was discovered to contain a heap buffer overflow vulnerability in the function formSetFixTools. This vulnerability allows attackers to cause a Denial of Service (DoS) via the hostname parameter. | M3_firmware | 7.5 | ||
| 2022-08-28 | CVE-2022-38570 | Tenda M3 V1.0.0.12(4856) was discovered to contain a stack overflow in the function formDelPushedAd. This vulnerability allows attackers to cause a Denial of Service (DoS) via the adPushUID parameter. | M3_firmware | 7.5 | ||
| 2022-08-28 | CVE-2022-38569 | Tenda M3 V1.0.0.12(4856) was discovered to contain a stack overflow in the function formDelAd. | M3_firmware | 7.5 | ||
| 2022-08-28 | CVE-2022-38571 | Tenda M3 V1.0.0.12(4856) was discovered to contain a buffer overflow in the function formSetGuideListItem. | M3_firmware | 7.5 | ||
| 2023-12-26 | CVE-2023-51090 | Tenda M3 V1.0.0.12(4856) was discovered to contain a stack overflow via the function formGetWeiXinConfig. | M3_firmware | 9.8 |