Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Tenda — Vulnerabilities & Security Advisories 735

Browse all 735 CVE security advisories affecting Tenda. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Tenda operates primarily as a manufacturer of consumer networking hardware, including Wi-Fi routers and range extenders, targeting residential and small business markets. The company’s product line has been associated with a significant volume of security issues, currently totaling 730 recorded CVEs. Historically, these vulnerabilities frequently involve remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from inadequate input validation and weak authentication mechanisms in embedded web interfaces. Notable incidents include the discovery of hardcoded credentials and command injection points that allow unauthenticated attackers to gain full administrative control over devices. These systemic weaknesses highlight persistent challenges in the security development lifecycle for budget-oriented IoT equipment, resulting in widespread exposure to botnet recruitment and network compromise.

Top products by Tenda: CH22 AC15 FH1202 F453 AC7 F456 AC18 AC10U FH451 WH450 AC20 AC8 AC6 F451 AC10 i21 W15E AC23 W9 O3 FH1201 AC9 AC21 FH1205 M3 O3V2 AC5 AC1206 W12 A15
CVE IDTitleCVSSSeverityPublished
CVE-2025-6886 Tenda AC5 openSchedWifi stack-based overflow — AC5CWE-121 8.8 High2025-06-30
CVE-2025-6113 Tenda FH1203 AdvSetLanip fromadvsetlanip buffer overflow — FH1203CWE-120 8.8 High2025-06-16
CVE-2025-6112 Tenda FH1205 AdvSetLanip fromadvsetlanip buffer overflow — FH1205CWE-120 8.8 High2025-06-16
CVE-2025-6111 Tenda FH1205 VirtualSer fromVirtualSer stack-based overflow — FH1205CWE-121 8.8 High2025-06-16
CVE-2025-6110 Tenda FH1201 SafeMacFilter stack-based overflow — FH1201CWE-121 8.8 High2025-06-16
CVE-2025-5978 Tenda FH1202 VirtualSer fromVirtualSer stack-based overflow — FH1202CWE-121 8.8 High2025-06-10
CVE-2025-5900 Tenda AC9 cross-site request forgery — AC9CWE-352 4.3 Medium2025-06-09
CVE-2025-5864 Tenda TDSEE App Password Reset Confirmation Code ConfirmSmsCode excessive authentication — TDSEE AppCWE-307 3.7 Low2025-06-09
CVE-2025-5863 Tenda AC5 SetRebootTimer formSetRebootTimer stack-based overflow — AC5CWE-121 8.8 High2025-06-09
CVE-2025-5862 Tenda AC7 setPptpUserList formSetPPTPUserList buffer overflow — AC7CWE-120 8.8 High2025-06-09
CVE-2025-5861 Tenda AC7 AdvSetLanip fromadvsetlanip buffer overflow — AC7CWE-120 8.8 High2025-06-09
CVE-2025-5855 Tenda AC6 SetRebootTimer formSetRebootTimer stack-based overflow — AC6CWE-121 8.8 High2025-06-09
CVE-2025-5854 Tenda AC6 AdvSetLanip fromadvsetlanip buffer overflow — AC6CWE-120 8.8 High2025-06-09
CVE-2025-5853 Tenda AC6 SetRemoteWebCfg formSetSafeWanWebMan stack-based overflow — AC6CWE-121 8.8 High2025-06-09
CVE-2025-5852 Tenda AC6 setPptpUserList formSetPPTPUserList buffer overflow — AC6CWE-120 8.8 High2025-06-09
CVE-2025-5851 Tenda AC15 HTTP POST Request AdvSetLanip fromadvsetlanip buffer overflow — AC15CWE-120 8.8 High2025-06-08
CVE-2025-5850 Tenda AC15 HTTP POST Request SetLEDCf formsetschedled buffer overflow — AC15CWE-120 8.8 High2025-06-08
CVE-2025-5849 Tenda AC15 HTTP POST Request SetRemoteWebCfg formSetSafeWanWebMan stack-based overflow — AC15CWE-121 8.8 High2025-06-08
CVE-2025-5848 Tenda AC15 HTTP POST Request setPptpUserList formSetPPTPUserList buffer overflow — AC15CWE-120 8.8 High2025-06-08
CVE-2025-5847 Tenda AC9 HTTP POST Request SetRemoteWebCfg formSetSafeWanWebMan stack-based overflow — AC9CWE-121 8.8 High2025-06-08
CVE-2025-5839 Tenda AC9 POST Request AdvSetLanip fromadvsetlanip buffer overflow — AC9CWE-120 8.8 High2025-06-07
CVE-2025-5836 Tenda AC9 POST Request SetIPTVCfg formSetIptv command injection — AC9CWE-77 6.3 Medium2025-06-07
CVE-2025-5799 Tenda AC8 WifiExtraSet fromSetWirelessRepeat stack-based overflow — AC8CWE-121 8.8 High2025-06-06
CVE-2025-5798 Tenda AC8 SetSysTimeCfg fromSetSysTime stack-based overflow — AC8CWE-121 8.8 High2025-06-06
CVE-2025-5795 Tenda AC5 AdvSetLanip fromadvsetlanip buffer overflow — AC5CWE-120 8.8 High2025-06-06
CVE-2025-5794 Tenda AC5 setPptpUserList formSetPPTPUserList buffer overflow — AC5CWE-120 8.8 High2025-06-06
CVE-2025-5763 Tenda CP3 apollo sub_F3C8C command injection — CP3CWE-77 4.7 Medium2025-06-06
CVE-2025-5685 Tenda CH22 Natlimit formNatlimit stack-based overflow — CH22CWE-121 8.8 High2025-06-05
CVE-2025-5629 Tenda AC10 HTTP SetPptpServerCfg formSetPPTPServer buffer overflow — AC10CWE-120 8.8 High2025-06-05
CVE-2025-5619 Tenda CH22 addUserName formaddUserName stack-based overflow — CH22CWE-121 8.8 High2025-06-04

This page lists every published CVE security advisory associated with Tenda. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.