Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Tenda — Vulnerabilities & Security Advisories 735

Browse all 735 CVE security advisories affecting Tenda. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Tenda operates primarily as a manufacturer of consumer networking hardware, including Wi-Fi routers and range extenders, targeting residential and small business markets. The company’s product line has been associated with a significant volume of security issues, currently totaling 730 recorded CVEs. Historically, these vulnerabilities frequently involve remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from inadequate input validation and weak authentication mechanisms in embedded web interfaces. Notable incidents include the discovery of hardcoded credentials and command injection points that allow unauthenticated attackers to gain full administrative control over devices. These systemic weaknesses highlight persistent challenges in the security development lifecycle for budget-oriented IoT equipment, resulting in widespread exposure to botnet recruitment and network compromise.

Top products by Tenda: CH22 AC15 FH1202 F453 AC7 F456 AC18 AC10U FH451 WH450 AC20 AC8 AC6 F451 AC10 i21 W15E AC23 W9 O3 FH1201 AC9 AC21 FH1205 M3 O3V2 AC5 AC1206 W12 A15
CVE IDTitleCVSSSeverityPublished
CVE-2025-7596 Tenda FH1205 WifiExtraSet formWifiExtraSet stack-based overflow — FH1205CWE-121 8.8 High2025-07-14
CVE-2025-7586 Tenda AC500 setWtpData formSetAPCfg stack-based overflow — AC500CWE-121 8.8 High2025-07-14
CVE-2025-7551 Tenda FH1201 PPTPDClient fromPptpUserAdd stack-based overflow — FH1201CWE-121 8.8 High2025-07-13
CVE-2025-7550 Tenda FH1201 GstDhcpSetSer fromGstDhcpSetSer stack-based overflow — FH1201CWE-121 8.8 High2025-07-13
CVE-2025-7549 Tenda FH1201 L7Prot frmL7ProtForm stack-based overflow — FH1201CWE-121 8.8 High2025-07-13
CVE-2025-7548 Tenda FH1201 SafeEmailFilter formSafeEmailFilter stack-based overflow — FH1201CWE-121 8.8 High2025-07-13
CVE-2025-7544 Tenda AC1206 setMacFilterCfg formSetMacFilterCfg stack-based overflow — AC1206CWE-121 8.8 High2025-07-13
CVE-2025-7532 Tenda FH1202 webExcptypemanFilter fromwebExcptypemanFilter stack-based overflow — FH1202CWE-121 8.8 High2025-07-13
CVE-2025-7531 Tenda FH1202 PPTPUserSetting fromPptpUserSetting stack-based overflow — FH1202CWE-121 8.8 High2025-07-13
CVE-2025-7530 Tenda FH1202 PPTPDClient fromPptpUserAdd stack-based overflow — FH1202CWE-121 8.8 High2025-07-13
CVE-2025-7529 Tenda FH1202 Natlimit fromNatlimit stack-based overflow — FH1202CWE-121 8.8 High2025-07-13
CVE-2025-7528 Tenda FH1202 GstDhcpSetSer fromGstDhcpSetSer stack-based overflow — FH1202CWE-121 8.8 High2025-07-13
CVE-2025-7527 Tenda FH1202 AdvSetWan fromAdvSetWan stack-based overflow — FH1202CWE-121 8.8 High2025-07-13
CVE-2025-7506 Tenda FH451 HTTP POST Request Natlimit fromNatlimit stack-based overflow — FH451CWE-121 8.8 High2025-07-12
CVE-2025-7505 Tenda FH451 HTTP POST Request L7Prot frmL7ProtForm stack-based overflow — FH451CWE-121 8.8 High2025-07-12
CVE-2025-7468 Tenda FH1201 HTTP POST Request fromSafeUrlFilter buffer overflow — FH1201CWE-120 8.8 High2025-07-12
CVE-2025-7465 Tenda FH1201 HTTP POST Request fromRouteStatic buffer overflow — FH1201CWE-120 8.8 High2025-07-12
CVE-2025-7463 Tenda FH1201 HTTP POST Request AdvSetWrlsafeset formWrlsafeset buffer overflow — FH1201CWE-120 8.8 High2025-07-12
CVE-2025-7434 Tenda FH451 POST Request addressNat fromAddressNat stack-based overflow — FH451CWE-121 8.8 High2025-07-11
CVE-2025-7423 Tenda O3V2 httpd setWrlFilterList formWifiMacFilterSet stack-based overflow — O3V2CWE-121 8.8 High2025-07-11
CVE-2025-7422 Tenda O3V2 httpd setNetworkService setAutoReboot stack-based overflow — O3V2CWE-121 8.8 High2025-07-11
CVE-2025-7421 Tenda O3V2 httpd operateMacFilter fromMacFilterModify stack-based overflow — O3V2CWE-121 8.8 High2025-07-11
CVE-2025-7420 Tenda O3V2 httpd setWrlBasicInfo formWifiBasicSet stack-based overflow — O3V2CWE-121 8.8 High2025-07-10
CVE-2025-7419 Tenda O3V2 httpd setRateTest fromSpeedTestSet stack-based overflow — O3V2CWE-121 8.8 High2025-07-10
CVE-2025-7418 Tenda O3V2 httpd setPing fromPingResultGet stack-based overflow — O3V2CWE-121 8.8 High2025-07-10
CVE-2025-7417 Tenda O3V2 httpd setPingInfo fromNetToolGet stack-based overflow — O3V2CWE-121 8.8 High2025-07-10
CVE-2025-7416 Tenda O3V2 httpd setSysTimeInfo fromSysToolTime stack-based overflow — O3V2CWE-121 8.8 High2025-07-10
CVE-2025-7415 Tenda O3V2 httpd getTraceroute fromTraceroutGet command injection — O3V2CWE-77 6.3 Medium2025-07-10
CVE-2025-7414 Tenda O3V2 httpd setPingInfo fromNetToolGet os command injection — O3V2CWE-78 6.3 Medium2025-07-10
CVE-2025-6887 Tenda AC5 SetSysTimeCfg stack-based overflow — AC5CWE-121 8.8 High2025-06-30

This page lists every published CVE security advisory associated with Tenda. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.