Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

Tenda — Vulnerabilities & Security Advisories 740

Browse all 740 CVE security advisories affecting Tenda. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Tenda operates primarily as a manufacturer of consumer networking hardware, including Wi-Fi routers and range extenders, targeting residential and small business markets. The company’s product line has been associated with a significant volume of security issues, currently totaling 730 recorded CVEs. Historically, these vulnerabilities frequently involve remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from inadequate input validation and weak authentication mechanisms in embedded web interfaces. Notable incidents include the discovery of hardcoded credentials and command injection points that allow unauthenticated attackers to gain full administrative control over devices. These systemic weaknesses highlight persistent challenges in the security development lifecycle for budget-oriented IoT equipment, resulting in widespread exposure to botnet recruitment and network compromise.

Top products by Tenda: CH22 AC15 FH1202 F453 AC7 F456 AC18 AC10U FH451 WH450 AC20 AC8 AC6 F451 AC10 i21 W15E AC23 FH1201 AC9 W9 O3 AC21 AC5 FH1205 M3 O3V2 AC1206 F1202 i3
CVE IDTitleCVSSSeverityPublished
CVE-2024-11650 Tenda i9 GetIPTV websReadEvent null pointer dereference — i9CWE-476 6.5 Medium2024-11-25
CVE-2024-11248 Tenda AC10 SetSysAutoRebbotCfg formSetRebootTimer stack-based overflow — AC10CWE-121 8.8 High2024-11-15
CVE-2024-11061 Tenda AC10 fast_setting_wifi_set FUN_0044db3c stack-based overflow — AC10CWE-121 8.8 High2024-11-11
CVE-2024-11056 Tenda AC10 WifiExtraSet FUN_0046AC38 stack-based overflow — AC10CWE-121 8.8 High2024-11-10
CVE-2024-10750 Tenda i22 SysToo websReadEvent null pointer dereference — i22CWE-476 6.5 Medium2024-11-04
CVE-2024-10698 Tenda AC6 SetOnlineDevName formSetDeviceName stack-based overflow — AC6CWE-121 8.8 High2024-11-02
CVE-2024-10697 Tenda AC6 API Endpoint WriteFacMac formWriteFacMac command injection — AC6CWE-77 6.3 Medium2024-11-02
CVE-2024-10662 Tenda AC15 SetOnlineDevName formSetDeviceName stack-based overflow — AC15CWE-121 8.8 High2024-11-01
CVE-2024-10661 Tenda AC15 SetDlnaCfg stack-based overflow — AC15CWE-121 8.8 High2024-11-01
CVE-2024-10434 Tenda AC1206 ate ate_Tenda_mfg_check_usb3 stack-based overflow — AC1206CWE-121 8.8 High2024-10-28
CVE-2024-10351 Tenda RX9 Pro POST Request setMacFilterCfg sub_424CE0 stack-based overflow — RX9 ProCWE-121 8.8 High2024-10-24
CVE-2024-10283 Tenda RX9/RX9 Pro SetNetControlList sub_4337EC stack-based overflow — RX9CWE-121 8.8 High2024-10-23
CVE-2024-10282 Tenda RX9/RX9 Pro SetVirtualServerCfg sub_42EA38 stack-based overflow — RX9CWE-121 8.8 High2024-10-23
CVE-2024-10281 Tenda RX9/RX9 Pro SetStaticRouteCfg sub_42EEE0 stack-based overflow — RX9CWE-121 8.8 High2024-10-23
CVE-2024-10280 Tenda AC6/AC7/AC8/AC9/AC10/AC10U/AC15/AC18/AC500/AC1206 GetIPTV websReadEvent null pointer dereference — AC6CWE-476 6.5 Medium2024-10-23
CVE-2024-10130 Tenda AC8 SetSysAutoRebbotCfg formSetRebootTimer stack-based overflow — AC8CWE-121 8.8 High2024-10-18
CVE-2024-10123 Tenda AC8 saveParentControlInfo compare_parentcontrol_time stack-based overflow — AC8CWE-121 8.8 High2024-10-18
CVE-2024-9793 Tenda AC1206 ate ate_ifconfig_set command injection — AC1206CWE-77 6.3 Medium2024-10-10
CVE-2024-8231 Tenda O6 setPortForward fromVirtualSet stack-based overflow — O6CWE-121 8.8 High2024-08-28
CVE-2024-8230 Tenda O6 setMacFilterList fromSafeSetMacFilter stack-based overflow — O6CWE-121 8.8 High2024-08-28
CVE-2024-8229 Tenda O6 operateMacFilter frommacFilterModify stack-based overflow — O6CWE-121 8.8 High2024-08-28
CVE-2024-8228 Tenda O5 setMacFilterList fromSafeSetMacFilter stack-based overflow — O5CWE-121 8.8 High2024-08-28
CVE-2024-8227 Tenda O1 DhcpSetSer fromDhcpSetSer stack-based overflow — O1CWE-121 8.8 High2024-08-28
CVE-2024-8226 Tenda O1 setcfm formSetCfm stack-based overflow — O1CWE-121 8.8 High2024-08-27
CVE-2024-8225 Tenda G3 SetSysTimeCfg formSetSysTime stack-based overflow — G3CWE-121 8.8 High2024-08-27
CVE-2024-8224 Tenda G3 setDebugCfg formSetDebugCfg stack-based overflow — G3CWE-121 8.8 High2024-08-27
CVE-2024-7707 Tenda FH1206 HTTP POST Request SafeEmailFilter formSafeEmailFilter stack-based overflow — FH1206CWE-121 8.8 High2024-08-13
CVE-2024-7615 Tenda FH1206 fromSafeUrlFilter stack-based overflow — FH1206CWE-121 8.8 High2024-08-08
CVE-2024-7614 Tenda FH1206 qossetting fromqossetting stack-based overflow — FH1206CWE-121 8.8 High2024-08-08
CVE-2024-7613 Tenda FH1206 GstDhcpSetSer fromGstDhcpSetSer buffer overflow — FH1206CWE-120 8.8 High2024-08-08

This page lists every published CVE security advisory associated with Tenda. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.