Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1110 CNY

100%
Buy Us a Coffee

Tenda — Vulnerabilities & Security Advisories 740

Browse all 740 CVE security advisories affecting Tenda. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Tenda operates primarily as a manufacturer of consumer networking hardware, including Wi-Fi routers and range extenders, targeting residential and small business markets. The company’s product line has been associated with a significant volume of security issues, currently totaling 730 recorded CVEs. Historically, these vulnerabilities frequently involve remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from inadequate input validation and weak authentication mechanisms in embedded web interfaces. Notable incidents include the discovery of hardcoded credentials and command injection points that allow unauthenticated attackers to gain full administrative control over devices. These systemic weaknesses highlight persistent challenges in the security development lifecycle for budget-oriented IoT equipment, resulting in widespread exposure to botnet recruitment and network compromise.

Top products by Tenda: CH22 AC15 FH1202 F453 AC7 F456 AC18 AC10U FH451 WH450 AC20 AC8 AC6 F451 AC10 i21 W15E AC23 FH1201 AC9 W9 O3 AC21 AC5 FH1205 M3 O3V2 AC1206 F1202 i3
CVE IDTitleCVSSSeverityPublished
CVE-2026-4493 Tenda A18 Pro MAC Filtering Configuration Endpoint setMacFilterCfg sub_423B50 stack-based overflow — A18 ProCWE-121 8.8 High2026-03-20
CVE-2026-4492 Tenda A18 Pro formSetQosBand set_qosMib_list stack-based overflow — A18 ProCWE-121 8.8 High2026-03-20
CVE-2026-4491 Tenda A18 Pro SetIpMacBind fromSetIpMacBind stack-based overflow — A18 ProCWE-121 8.8 High2026-03-20
CVE-2026-4490 Tenda A18 Pro openSchedWifi setSchedWifi stack-based overflow — A18 ProCWE-121 8.8 High2026-03-20
CVE-2026-4489 Tenda A18 Pro fast_setting_wifi_set form_fast_setting_wifi_set stack-based overflow — A18 ProCWE-121 8.8 High2026-03-20
CVE-2026-4254 Tenda AC8 HTTP Endpoint SysToolChangePwd doSystemCmd stack-based overflow — AC8CWE-121 9.8 Critical2026-03-16
CVE-2026-4253 Tenda AC8 Web UploadCfg route_set_user_policy_rule os command injection — AC8CWE-78 4.7 Medium2026-03-16
CVE-2026-4252 Tenda AC8 IPv6 check_is_ipv6 ip address for authentication — AC8CWE-291 9.8 Critical2026-03-16
CVE-2026-4043 Tenda i12 wifiSSIDget formwrlSSIDget stack-based overflow — i12CWE-121 8.8 High2026-03-12
CVE-2026-4042 Tenda i12 WifiMacFilterGet formWifiMacFilterGet stack-based overflow — i12CWE-121 8.8 High2026-03-12
CVE-2026-4041 Tenda i12 exeCommand vos_strcpy stack-based overflow — i12CWE-121 8.8 High2026-03-12
CVE-2026-4008 Tenda W3 POST Parameter wifiSSIDset stack-based overflow — W3CWE-121 8.8 High2026-03-12
CVE-2026-4007 Tenda W3 POST Parameter wifiSSIDget stack-based overflow — W3CWE-121 8.8 High2026-03-12
CVE-2026-3976 Tenda W3 POST Parameter WifiMacFilterSet formWifiMacFilterSet stack-based overflow — W3CWE-121 8.8 High2026-03-12
CVE-2026-3975 Tenda W3 POST Parameter WifiMacFilterGet formWifiMacFilterGet stack-based overflow — W3CWE-121 8.8 High2026-03-12
CVE-2026-3974 Tenda W3 HTTP exeCommand formexeCommand stack-based overflow — W3CWE-121 8.8 High2026-03-12
CVE-2026-3973 Tenda W3 POST Parameter setAutoPing formSetAutoPing stack-based overflow — W3CWE-121 8.8 High2026-03-12
CVE-2026-3972 Tenda W3 HTTP setcfm formSetCfm stack-based overflow — W3CWE-121 8.8 High2026-03-12
CVE-2026-3971 Tenda i3 wifiSSIDset formwrlSSIDset stack-based overflow — i3CWE-121 8.8 High2026-03-12
CVE-2026-3970 Tenda i3 wifiSSIDget formwrlSSIDget stack-based overflow — i3CWE-121 8.8 High2026-03-12
CVE-2026-3811 Tenda FH1202 P2pListFilter fromP2pListFilter stack-based overflow — FH1202CWE-121 8.8 High2026-03-09
CVE-2026-3810 Tenda FH1202 DhcpListClient fromDhcpListClient stack-based overflow — FH1202CWE-121 8.8 High2026-03-09
CVE-2026-3809 Tenda FH1202 NatSaticSetting fromNatStaticSetting stack-based overflow — FH1202CWE-121 8.8 High2026-03-09
CVE-2026-3808 Tenda FH1202 webtypelibrary formWebTypeLibrary stack-based overflow — FH1202CWE-121 8.8 High2026-03-09
CVE-2026-3807 Tenda FH1202 AdvSetWrlsafeset formWrlsafeset stack-based overflow — FH1202CWE-121 8.8 High2026-03-09
CVE-2026-3804 Tenda i3 WifiMacFilterSet formWifiMacFilterSet stack-based overflow — i3CWE-121 8.8 High2026-03-09
CVE-2026-3803 Tenda i3 WifiMacFilterGet formWifiMacFilterGet stack-based overflow — i3CWE-121 8.8 High2026-03-09
CVE-2026-3802 Tenda i3 exeCommand formexeCommand stack-based overflow — i3CWE-121 8.8 High2026-03-09
CVE-2026-3801 Tenda i3 setAutoPing formSetAutoPing stack-based overflow — i3CWE-121 8.8 High2026-03-09
CVE-2026-3799 Tenda i3 setcfm formSetCfm stack-based overflow — i3CWE-121 8.8 High2026-03-09

This page lists every published CVE security advisory associated with Tenda. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.