Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Tenda — Vulnerabilities & Security Advisories 735

Browse all 735 CVE security advisories affecting Tenda. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Tenda operates primarily as a manufacturer of consumer networking hardware, including Wi-Fi routers and range extenders, targeting residential and small business markets. The company’s product line has been associated with a significant volume of security issues, currently totaling 730 recorded CVEs. Historically, these vulnerabilities frequently involve remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from inadequate input validation and weak authentication mechanisms in embedded web interfaces. Notable incidents include the discovery of hardcoded credentials and command injection points that allow unauthenticated attackers to gain full administrative control over devices. These systemic weaknesses highlight persistent challenges in the security development lifecycle for budget-oriented IoT equipment, resulting in widespread exposure to botnet recruitment and network compromise.

Top products by Tenda: CH22 AC15 FH1202 F453 AC7 F456 AC18 AC10U FH451 WH450 AC20 AC8 AC6 F451 AC10 i21 W15E AC23 W9 O3 FH1201 AC9 AC21 FH1205 M3 O3V2 AC5 AC1206 W12 A15
CVE IDTitleCVSSSeverityPublished
CVE-2024-2853 Tenda AC10U setsambacfg formSetSambaConf os command injection — AC10UCWE-78 6.3 Medium2024-03-24
CVE-2024-2852 Tenda AC15 saveParentControlInfo stack-based overflow — AC15CWE-121 8.8 High2024-03-24
CVE-2024-2851 Tenda AC15 setsambacfg formSetSambaConf os command injection — AC15CWE-78 6.3 Medium2024-03-24
CVE-2024-2850 Tenda AC15 saveParentControlInfo stack-based overflow — AC15CWE-121 8.8 High2024-03-24
CVE-2024-2817 Tenda AC15 SysToolRestoreSet fromSysToolRestoreSet cross-site request forgery — AC15CWE-352 4.3 Medium2024-03-22
CVE-2024-2816 Tenda AC15 SysToolReboot fromSysToolReboot cross-site request forgery — AC15CWE-352 4.3 Medium2024-03-22
CVE-2024-2815 Tenda AC15 Cookie execCommand R7WebsSecurityHandler stack-based overflow — AC15CWE-121 8.8 High2024-03-22
CVE-2024-2814 Tenda AC15 DhcpListClient fromDhcpListClient stack-based overflow — AC15CWE-121 8.8 High2024-03-22
CVE-2024-2813 Tenda AC15 fast_setting_wifi_set form_fast_setting_wifi_set stack-based overflow — AC15CWE-121 8.8 High2024-03-22
CVE-2024-2812 Tenda AC15 WriteFacMac formWriteFacMac os command injection — AC15CWE-78 6.3 Medium2024-03-22
CVE-2024-2811 Tenda AC15 WifiWpsStart formWifiWpsStart stack-based overflow — AC15CWE-121 8.8 High2024-03-22
CVE-2024-2810 Tenda AC15 WifiWpsOOB formWifiWpsOOB stack-based overflow — AC15CWE-121 8.8 High2024-03-22
CVE-2024-2809 Tenda AC15 SetFirewallCfg formSetFirewallCfg stack-based overflow — AC15CWE-121 8.8 High2024-03-22
CVE-2024-2808 Tenda AC15 QuickIndex formQuickIndex stack-based overflow — AC15CWE-121 8.8 High2024-03-22
CVE-2024-2807 Tenda AC15 expandDlnaFile formExpandDlnaFile stack-based overflow — AC15CWE-121 8.8 High2024-03-22
CVE-2024-2806 Tenda AC15 addWifiMacFilter stack-based overflow — AC15CWE-121 8.8 High2024-03-22
CVE-2024-2805 Tenda AC15 SetSpeedWan formSetSpeedWan stack-based overflow — AC15CWE-121 8.8 High2024-03-22
CVE-2024-2764 Tenda AC10U SetPptpServerCfg formSetPPTPServer stack-based overflow — AC10UCWE-121 8.8 High2024-03-21
CVE-2024-2763 Tenda AC10U setcfm formSetCfm stack-based overflow — AC10UCWE-121 8.8 High2024-03-21
CVE-2024-2711 Tenda AC10U addWifiMacFilter stack-based overflow — AC10UCWE-121 8.8 High2024-03-20
CVE-2024-2710 Tenda AC10U openSchedWifi setSchedWifi stack-based overflow — AC10UCWE-121 8.8 High2024-03-20
CVE-2024-2709 Tenda AC10U SetStaticRouteCfg fromSetRouteStatic stack-based overflow — AC10UCWE-121 8.8 High2024-03-20
CVE-2024-2708 Tenda AC10U execCommand formexeCommand stack-based overflow — AC10UCWE-121 8.8 High2024-03-20
CVE-2024-2707 Tenda AC10U WriteFacMac formWriteFacMac os command injection — AC10UCWE-78 6.3 Medium2024-03-20
CVE-2024-2706 Tenda AC10U WifiWpsStart formWifiWpsStart stack-based overflow — AC10UCWE-121 8.8 High2024-03-20
CVE-2024-2705 Tenda AC10U SetNetControlList formSetQosBand stack-based overflow — AC10UCWE-121 8.8 High2024-03-20
CVE-2024-2704 Tenda AC10U SetFirewallCfg formSetFirewallCfg stack-based overflow — AC10UCWE-121 8.8 High2024-03-20
CVE-2024-2703 Tenda AC10U SetOnlineDevName formSetDeviceName stack-based overflow — AC10UCWE-121 8.8 High2024-03-20
CVE-2024-2581 Tenda AC10 SetStaticRouteCfg fromSetRouteStatic stack-based overflow — AC10CWE-121 8.8 High2024-03-18
CVE-2024-2560 Tenda AC18 SysToolRestoreSet fromSysToolRestoreSet cross-site request forgery — AC18CWE-352 4.3 Medium2024-03-17

This page lists every published CVE security advisory associated with Tenda. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.