Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Tenda — Vulnerabilities & Security Advisories 735

Browse all 735 CVE security advisories affecting Tenda. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Tenda operates primarily as a manufacturer of consumer networking hardware, including Wi-Fi routers and range extenders, targeting residential and small business markets. The company’s product line has been associated with a significant volume of security issues, currently totaling 730 recorded CVEs. Historically, these vulnerabilities frequently involve remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from inadequate input validation and weak authentication mechanisms in embedded web interfaces. Notable incidents include the discovery of hardcoded credentials and command injection points that allow unauthenticated attackers to gain full administrative control over devices. These systemic weaknesses highlight persistent challenges in the security development lifecycle for budget-oriented IoT equipment, resulting in widespread exposure to botnet recruitment and network compromise.

Top products by Tenda: CH22 AC15 FH1202 F453 AC7 F456 AC18 AC10U FH451 WH450 AC20 AC8 AC6 F451 AC10 i21 W15E AC23 W9 O3 FH1201 AC9 AC21 FH1205 M3 O3V2 AC5 AC1206 W12 A15
CVE IDTitleCVSSSeverityPublished
CVE-2024-2989 Tenda FH1203 NatStaticSetting fromNatStaticSetting stack-based overflow — FH1203CWE-121 8.8 High2024-03-27
CVE-2024-2988 Tenda FH1203 fromRouteStatic fromSetRouteStatic stack-based overflow — FH1203CWE-121 8.8 High2024-03-27
CVE-2024-2987 Tenda FH1202 GetParentControlInfo stack-based overflow — FH1202CWE-121 8.8 High2024-03-27
CVE-2024-2986 Tenda FH1202 SetSpeedWan formSetSpeedWan stack-based overflow — FH1202CWE-121 8.8 High2024-03-27
CVE-2024-2985 Tenda FH1202 QuickIndex formQuickIndex stack-based overflow — FH1202CWE-121 8.8 High2024-03-27
CVE-2024-2984 Tenda FH1202 setcfm formSetCfm stack-based overflow — FH1202CWE-121 8.8 High2024-03-27
CVE-2024-2983 Tenda FH1202 SetClientState formSetClientState stack-based overflow — FH1202CWE-121 8.8 High2024-03-27
CVE-2024-2982 Tenda FH1202 WriteFacMac formWriteFacMac command injection — FH1202CWE-77 5.5 Medium2024-03-27
CVE-2024-2981 Tenda FH1202 fast_setting_wifi_set form_fast_setting_wifi_set stack-based overflow — FH1202CWE-121 8.8 High2024-03-27
CVE-2024-2980 Tenda FH1202 execCommand formexeCommand stack-based overflow — FH1202CWE-121 8.8 High2024-03-27
CVE-2024-2979 Tenda F1203 openSchedWifi setSchedWifi stack-based overflow — F1203CWE-121 8.8 High2024-03-27
CVE-2024-2978 Tenda F1203 setcfm formSetCfm stack-based overflow — F1203CWE-121 8.8 High2024-03-27
CVE-2024-2977 Tenda F1203 QuickIndex formQuickIndex stack-based overflow — F1203CWE-121 8.8 High2024-03-27
CVE-2024-2976 Tenda F1203 execCommand R7WebsSecurityHandler stack-based overflow — F1203CWE-121 8.8 High2024-03-27
CVE-2024-2903 Tenda AC7 GetParentControlInfo stack-based overflow — AC7CWE-121 8.8 High2024-03-26
CVE-2024-2902 Tenda AC7 WifiGuestSet fromSetWifiGusetBasic stack-based overflow — AC7CWE-121 8.8 High2024-03-26
CVE-2024-2901 Tenda AC7 openSchedWifi setSchedWifi stack-based overflow — AC7CWE-121 8.8 High2024-03-26
CVE-2024-2900 Tenda AC7 saveParentControlInfo stack-based overflow — AC7CWE-121 8.8 High2024-03-26
CVE-2024-2899 Tenda AC7 WifiExtraSet fromSetWirelessRepeat stack-based overflow — AC7CWE-121 8.8 High2024-03-26
CVE-2024-2898 Tenda AC7 SetStaticRouteCfg fromSetRouteStatic stack-based overflow — AC7CWE-121 8.8 High2024-03-26
CVE-2024-2897 Tenda AC7 WriteFacMac formWriteFacMac os command injection — AC7CWE-78 6.3 Medium2024-03-26
CVE-2024-2896 Tenda AC7 WifiWpsStart formWifiWpsStart stack-based overflow — AC7CWE-121 8.8 High2024-03-26
CVE-2024-2895 Tenda AC7 WifiWpsOOB formWifiWpsOOB stack-based overflow — AC7CWE-121 8.8 High2024-03-26
CVE-2024-2894 Tenda AC7 SetNetControlList formSetQosBand stack-based overflow — AC7CWE-121 8.8 High2024-03-26
CVE-2024-2893 Tenda AC7 SetOnlineDevName formSetDeviceName stack-based overflow — AC7CWE-121 8.8 High2024-03-26
CVE-2024-2892 Tenda AC7 setcfm formSetCfm stack-based overflow — AC7CWE-121 8.8 High2024-03-26
CVE-2024-2891 Tenda AC7 QuickIndex formQuickIndex stack-based overflow — AC7CWE-121 8.8 High2024-03-26
CVE-2024-2856 Tenda AC10 SetSysTimeCfg fromSetSysTime stack-based overflow — AC10CWE-121 8.8 High2024-03-24
CVE-2024-2855 Tenda AC15 SetSysTimeCfg fromSetSysTime stack-based overflow — AC15CWE-121 8.8 High2024-03-24
CVE-2024-2854 Tenda AC18 setsambacfg formSetSambaConf os command injection — AC18CWE-78 6.3 Medium2024-03-24

This page lists every published CVE security advisory associated with Tenda. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.