Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Tenda — Vulnerabilities & Security Advisories 735

Browse all 735 CVE security advisories affecting Tenda. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Tenda operates primarily as a manufacturer of consumer networking hardware, including Wi-Fi routers and range extenders, targeting residential and small business markets. The company’s product line has been associated with a significant volume of security issues, currently totaling 730 recorded CVEs. Historically, these vulnerabilities frequently involve remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from inadequate input validation and weak authentication mechanisms in embedded web interfaces. Notable incidents include the discovery of hardcoded credentials and command injection points that allow unauthenticated attackers to gain full administrative control over devices. These systemic weaknesses highlight persistent challenges in the security development lifecycle for budget-oriented IoT equipment, resulting in widespread exposure to botnet recruitment and network compromise.

Top products by Tenda: CH22 AC15 FH1202 F453 AC7 F456 AC18 AC10U FH451 WH450 AC20 AC8 AC6 F451 AC10 i21 W15E AC23 W9 O3 FH1201 AC9 AC21 FH1205 M3 O3V2 AC5 AC1206 W12 A15
CVE IDTitleCVSSSeverityPublished
CVE-2024-2559 Tenda AC18 SysToolReboot fromSysToolReboot cross-site request forgery — AC18CWE-352 4.3 Medium2024-03-17
CVE-2024-2558 Tenda AC18 execCommand formexeCommand stack-based overflow — AC18CWE-121 8.8 High2024-03-17
CVE-2024-2547 Tenda AC18 R7WebsSecurityHandler stack-based overflow — AC18CWE-121 8.8 High2024-03-17
CVE-2024-2546 Tenda AC18 fromSetWirelessRepeat stack-based overflow — AC18CWE-121 8.8 High2024-03-17
CVE-2024-2490 Tenda AC18 openSchedWifi setSchedWifi stack-based overflow — AC18CWE-121 8.8 High2024-03-15
CVE-2024-2489 Tenda AC18 SetNetControlList formSetQosBand stack-based overflow — AC18CWE-121 8.8 High2024-03-15
CVE-2024-2488 Tenda AC18 SetPptpServerCfg formSetPPTPServer stack-based overflow — AC18CWE-121 8.8 High2024-03-15
CVE-2024-2487 Tenda AC18 SetOnlineDevName formSetDeviceName stack-based overflow — AC18CWE-121 8.8 High2024-03-15
CVE-2024-2486 Tenda AC18 QuickIndex formQuickIndex stack-based overflow — AC18CWE-121 8.8 High2024-03-15
CVE-2024-2485 Tenda AC18 SetSpeedWan formSetSpeedWan stack-based overflow — AC18CWE-121 8.8 High2024-03-15
CVE-2024-0996 Tenda i9 httpd setcfm formSetCfm stack-based overflow — i9CWE-121 7.2 High2024-01-29
CVE-2024-0995 Tenda W6 httpd wifiSSIDset formwrlSSIDset stack-based overflow — W6CWE-121 7.2 High2024-01-29
CVE-2024-0994 Tenda W6 httpd setcfm formSetCfm stack-based overflow — W6CWE-121 7.2 High2024-01-29
CVE-2024-0993 Tenda i6 httpd WifiMacFilterGet formWifiMacFilterGet stack-based overflow — i6CWE-121 7.2 High2024-01-29
CVE-2024-0992 Tenda i6 httpd wifiSSIDset formwrlSSIDset stack-based overflow — i6CWE-121 7.2 High2024-01-29
CVE-2024-0991 Tenda i6 httpd setcfm formSetCfm stack-based overflow — i6CWE-121 7.2 High2024-01-29
CVE-2024-0990 Tenda i6 httpd setAutoPing formSetAutoPing stack-based overflow — i6CWE-121 7.2 High2024-01-29
CVE-2024-0932 Tenda AC10U setSmartPowerManagement stack-based overflow — AC10UCWE-121 4.7 Medium2024-01-26
CVE-2024-0931 Tenda AC10U saveParentControlInfo stack-based overflow — AC10UCWE-121 4.7 Medium2024-01-26
CVE-2024-0930 Tenda AC10U fromSetWirelessRepeat stack-based overflow — AC10UCWE-121 4.7 Medium2024-01-26
CVE-2024-0929 Tenda AC10U fromNatStaticSetting stack-based overflow — AC10UCWE-121 4.7 Medium2024-01-26
CVE-2024-0928 Tenda AC10U fromDhcpListClient stack-based overflow — AC10UCWE-121 4.7 Medium2024-01-26
CVE-2024-0927 Tenda AC10U fromAddressNat stack-based overflow — AC10UCWE-121 4.7 Medium2024-01-26
CVE-2024-0926 Tenda AC10U formWifiWpsOOB stack-based overflow — AC10UCWE-121 4.7 Medium2024-01-26
CVE-2024-0925 Tenda AC10U formSetVirtualSer stack-based overflow — AC10UCWE-121 4.7 Medium2024-01-26
CVE-2024-0924 Tenda AC10U formSetPPTPServer stack-based overflow — AC10UCWE-121 4.7 Medium2024-01-26
CVE-2024-0923 Tenda AC10U formSetDeviceName stack-based overflow — AC10UCWE-121 4.7 Medium2024-01-26
CVE-2024-0922 Tenda AC10U formQuickIndex stack-based overflow — AC10UCWE-121 4.7 Medium2024-01-26
CVE-2024-0542 Tenda W9 httpd formWifiMacFilterGet stack-based overflow — W9CWE-121 8.8 High2024-01-15
CVE-2024-0541 Tenda W9 httpd formAddSysLogRule stack-based overflow — W9CWE-121 8.8 High2024-01-15

This page lists every published CVE security advisory associated with Tenda. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.