Tenda Security Vulnerabilities (CVEs)
Track 748 security vulnerabilities affecting Tenda products and software. Get instant email alerts when new CVEs are discovered, automated security monitoring, and patch guidance.
This vulnerability allows remote attackers to execute arbitrary commands on Tenda AC9 routers via the SetIPTVCfg function. Attackers can gain full con...
Mar 18, 2022CVE-2022-25440 is a critical stack overflow vulnerability in Tenda AC9 routers that allows remote attackers to execute arbitrary code by sending speci...
Mar 18, 2022This vulnerability allows remote attackers to execute arbitrary code on Tenda AC6 routers via a stack overflow in the PowerSaveSet function. Attackers...
Mar 18, 2022This vulnerability allows remote attackers to execute arbitrary code on Tenda AC6 routers via a stack overflow in the openSchedWifi function. Attacker...
Mar 18, 2022This vulnerability allows remote attackers to execute arbitrary code on Tenda AC6 routers by exploiting a stack overflow in the saveParentControlInfo ...
Mar 18, 2022This vulnerability in Tenda AC6 routers allows remote attackers to execute arbitrary code via a stack overflow in the setstaticroutecfg function. Atta...
Mar 18, 2022This vulnerability allows remote attackers to execute arbitrary code on Tenda AC6 routers via a stack overflow in the saveParentControlInfo function. ...
Mar 18, 2022This vulnerability is a stack overflow in Tenda AC6 routers that allows remote attackers to execute arbitrary code by sending a specially crafted requ...
Mar 18, 2022This vulnerability allows remote attackers to execute arbitrary code on Tenda AC6 routers via a stack overflow in the SetSysTimeCfg function. Attacker...
Mar 18, 2022This vulnerability allows remote attackers to execute arbitrary code on Tenda AC6 routers via a stack overflow in the SetSysTimeCfg function. Attacker...
Mar 18, 2022This vulnerability allows remote attackers to execute arbitrary code on Tenda AC6 routers via a stack overflow in the SetPptpServerCfg function. Attac...
Mar 18, 2022This vulnerability allows remote attackers to execute arbitrary code on Tenda AC9 routers via a stack overflow in the openSchedWifi function. Attacker...
Mar 18, 2022This vulnerability allows remote attackers to execute arbitrary code on Tenda AC9 routers via a buffer overflow in the saveparentcontrolinfo function....
Mar 18, 2022Tenda AX12 routers running firmware v22.03.01.21 contain a stack overflow vulnerability in the sub_42DE00 function. Attackers can exploit this via the...
Mar 10, 2022Tenda AX1806 routers running firmware v1.0.0.1 contain a stack overflow vulnerability in the formSetProvince function. Attackers can exploit this by s...
Mar 10, 2022Tenda AX1806 routers running firmware v1.0.0.1 contain a stack overflow vulnerability in the saveParentControlInfo function. Attackers can exploit thi...
Mar 10, 2022Tenda AX12 routers running firmware v22.03.01.21 contain a stack overflow vulnerability in the sub_42E328 function. Attackers can exploit this via the...
Mar 10, 2022A stack overflow vulnerability in Tenda AX1806 routers allows attackers to cause Denial of Service (DoS) by sending specially crafted requests to the ...
Mar 10, 2022A stack overflow vulnerability in Tenda AX1806 routers allows attackers to cause Denial of Service by sending specially crafted deviceName parameters ...
Mar 10, 2022Tenda AX1806 routers running firmware v1.0.0.1 contain a stack overflow vulnerability in the fromSetSysTime function. Attackers can exploit this by se...
Mar 10, 2022Tenda AX1806 routers running firmware v1.0.0.1 contain a stack overflow vulnerability in the formSetSysToolDDNS function. Attackers can exploit this b...
Mar 10, 2022This vulnerability is a stack overflow in Tenda AX3 routers running firmware version 16.03.12.10_CN. Attackers can send specially crafted time paramet...
Mar 10, 2022A stack buffer overflow vulnerability exists in Tenda AX12 routers running firmware v22.03.01.21. Attackers can exploit this via the strcpy parameter ...
Mar 10, 2022This CVE describes a critical stack buffer overflow vulnerability in Tenda-AX3 routers that allows remote code execution. Attackers can exploit it by ...
Mar 4, 2022CVE-2022-25417 is a critical stack overflow vulnerability in Tenda AC9 routers that allows remote attackers to execute arbitrary code by sending speci...
Feb 24, 2022A buffer overflow vulnerability in Tenda AX12 routers allows attackers to cause denial of service by sending specially crafted requests to the httpd s...
Feb 16, 2022A stack buffer overflow vulnerability in the PPPoE module of Tenda AC Series Router AC11 firmware allows attackers to cause Denial of Service (DoS) by...
Feb 15, 2022A stack buffer overflow vulnerability in Tenda AC Series Router AC11 firmware allows attackers to cause Denial of Service (DoS) by sending specially c...
Feb 15, 2022This vulnerability is a stack buffer overflow in Tenda AC Series Router AC11 firmware's wifiBasicCfg module. Attackers can send specially crafted over...
Feb 15, 2022This CVE describes a remote code execution vulnerability in Tenda AC9 routers where shell metacharacters in the guestuser field can be exploited via a...
Feb 11, 2022CVE-2022-24148 is a critical command injection vulnerability in Tenda AX3 routers that allows attackers to execute arbitrary system commands via the d...
Feb 4, 2022This vulnerability allows remote attackers to execute arbitrary commands on Tenda AX3 routers via command injection in the remoteIp parameter. Attacke...
Feb 4, 2022CVE-2022-24152 is a stack overflow vulnerability in Tenda AX3 routers running firmware version 16.03.12.10_CN. Attackers can exploit this by sending s...
Feb 4, 2022This vulnerability is a stack overflow in Tenda AX3 routers running firmware version 16.03.12.10_CN. Attackers can send specially crafted rebootTime p...
Feb 4, 2022CVE-2022-24156 is a stack overflow vulnerability in Tenda AX3 routers running firmware version 16.03.12.10_CN. Attackers can exploit this by sending s...
Feb 4, 2022CVE-2022-24158 is a stack overflow vulnerability in Tenda AX3 routers running firmware version 16.03.12.10_CN. Attackers can exploit this by sending s...
Feb 4, 2022CVE-2022-24160 is a stack overflow vulnerability in Tenda AX3 routers that allows attackers to cause Denial of Service (DoS) by sending specially craf...
Feb 4, 2022CVE-2022-24162 is a stack overflow vulnerability in Tenda AX3 routers running firmware version 16.03.12.10_CN. Attackers can exploit this by sending s...
Feb 4, 2022This CVE describes a stack overflow vulnerability in Tenda AX3 and AX12 routers' form_fast_setting_wifi_set function. Attackers can exploit it by send...
Feb 4, 2022CVE-2022-24144 is a critical command injection vulnerability in Tenda AX3 routers that allows attackers to execute arbitrary system commands by manipu...
Feb 4, 2022Tenda AX3 routers running firmware version 16.03.12.10_CN contain a stack overflow vulnerability in the formSetQosBand function. Attackers can exploit...
Feb 4, 2022This vulnerability allows remote attackers to execute arbitrary code on Tenda AC11 routers via a stack buffer overflow in the /goform/setmac endpoint....
May 7, 2021This critical vulnerability in Tenda AC11 routers allows remote attackers to execute arbitrary code via a stack buffer overflow in the setVLAN form ha...
May 7, 2021This critical buffer overflow vulnerability in Tenda G1 and G3 routers allows remote attackers to execute arbitrary code by sending a specially crafte...
Apr 14, 2021This critical buffer overflow vulnerability in Tenda G1 and G3 routers allows remote attackers to execute arbitrary code by sending a specially crafte...
Apr 14, 2021This vulnerability allows unauthenticated remote attackers to download the router configuration file containing sensitive information like admin passw...
Jan 1, 2021This vulnerability allows remote attackers to execute arbitrary system commands on Tenda AC15 AC1900 routers via shell metacharacters in the lanIp par...
Jul 23, 2020This vulnerability allows remote attackers to execute arbitrary system commands on Tenda AC15 AC1900 routers via a specific endpoint. Attackers can ex...
Jul 13, 2020Why Monitor Tenda Security Vulnerabilities?
Real-time CVE tracking: Our automated system monitors 748+ known vulnerabilities affecting Tenda products and software packages. Stay ahead of emerging threats with instant email notifications when new security issues are discovered.
Automated security monitoring: Unlike manual CVE checking, FixTheCVE automatically scans your servers and detects vulnerable Tenda packages in under 60 seconds. No agents required - completely agentless scanning that works across Tenda deployments.
Free vulnerability database: Access detailed information about every Tenda CVE including CVSS scores, severity ratings, affected versions, and actionable patch guidance. Filter by critical, high, medium, or low severity to prioritize your security remediation efforts.
🚀 Get Started in 60 Seconds
- Register free account & add your servers
- Run one-time scan or schedule automatic monitoring (every 1-24 hours)
- Receive instant alerts when new Tenda CVEs affect your systems
- Access dashboard with severity breakdown & fix instructions
