Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Tenda — Vulnerabilities & Security Advisories 735

Browse all 735 CVE security advisories affecting Tenda. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Tenda operates primarily as a manufacturer of consumer networking hardware, including Wi-Fi routers and range extenders, targeting residential and small business markets. The company’s product line has been associated with a significant volume of security issues, currently totaling 730 recorded CVEs. Historically, these vulnerabilities frequently involve remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from inadequate input validation and weak authentication mechanisms in embedded web interfaces. Notable incidents include the discovery of hardcoded credentials and command injection points that allow unauthenticated attackers to gain full administrative control over devices. These systemic weaknesses highlight persistent challenges in the security development lifecycle for budget-oriented IoT equipment, resulting in widespread exposure to botnet recruitment and network compromise.

Found 27 results / 735Clear Filters
Top products by Tenda: CH22 AC15 FH1202 F453 AC7 F456 AC18 AC10U FH451 WH450 AC20 AC8 AC6 F451 AC10 i21 W15E AC23 W9 O3 FH1201 AC9 AC21 FH1205 M3 O3V2 AC5 AC1206 W12 A15
CVE IDTitleCVSSSeverityPublished
CVE-2025-14993 Tenda AC18 HTTP Request SetDlnaCfg sprintf stack-based overflow — AC18CWE-121 8.8 High2025-12-21
CVE-2025-14992 Tenda AC18 HTTP Request GetParentControlInfo strcpy stack-based overflow — AC18CWE-121 8.8 High2025-12-21
CVE-2025-11328 Tenda AC18 SetDDNSCfg stack-based overflow — AC18CWE-121 8.8 High2025-10-06
CVE-2025-11327 Tenda AC18 SetUpnpCfg stack-based overflow — AC18CWE-121 8.8 High2025-10-06
CVE-2025-11326 Tenda AC18 WifiMacFilterSet stack-based overflow — AC18CWE-121 8.8 High2025-10-06
CVE-2025-11325 Tenda AC18 fast_setting_pppoe_set stack-based overflow — AC18CWE-121 8.8 High2025-10-06
CVE-2025-11324 Tenda AC18 setNotUpgrade stack-based overflow — AC18CWE-121 8.8 High2025-10-06
CVE-2025-11123 Tenda AC18 saveAutoQos stack-based overflow — AC18CWE-121 8.8 High2025-09-28
CVE-2025-11122 Tenda AC18 WizardHandle stack-based overflow — AC18CWE-121 8.8 High2025-09-28
CVE-2025-11121 Tenda AC18 AdvSetLanip command injection — AC18CWE-77 6.3 Medium2025-09-28
CVE-2025-8182 Tenda AC18 Samba smb.conf weak password — AC18CWE-521 5.6 Medium2025-07-26
CVE-2025-5609 Tenda AC18 AdvSetLanip fromadvsetlanip buffer overflow — AC18CWE-120 8.8 High2025-06-04
CVE-2025-5608 Tenda AC18 SetSysAutoRebbotCfg formsetreboottimer buffer overflow — AC18CWE-120 8.8 High2025-06-04
CVE-2025-5607 Tenda AC18 setPptpUserList formSetPPTPUserList buffer overflow — AC18CWE-120 8.8 High2025-06-04
CVE-2025-5606 Tenda AC18 SetIPTVCfg formSetIptv command injection — AC18CWE-77 6.3 Medium2025-06-04
CVE-2024-2854 Tenda AC18 setsambacfg formSetSambaConf os command injection — AC18CWE-78 6.3 Medium2024-03-24
CVE-2024-2560 Tenda AC18 SysToolRestoreSet fromSysToolRestoreSet cross-site request forgery — AC18CWE-352 4.3 Medium2024-03-17
CVE-2024-2559 Tenda AC18 SysToolReboot fromSysToolReboot cross-site request forgery — AC18CWE-352 4.3 Medium2024-03-17
CVE-2024-2558 Tenda AC18 execCommand formexeCommand stack-based overflow — AC18CWE-121 8.8 High2024-03-17
CVE-2024-2547 Tenda AC18 R7WebsSecurityHandler stack-based overflow — AC18CWE-121 8.8 High2024-03-17
CVE-2024-2546 Tenda AC18 fromSetWirelessRepeat stack-based overflow — AC18CWE-121 8.8 High2024-03-17
CVE-2024-2490 Tenda AC18 openSchedWifi setSchedWifi stack-based overflow — AC18CWE-121 8.8 High2024-03-15
CVE-2024-2489 Tenda AC18 SetNetControlList formSetQosBand stack-based overflow — AC18CWE-121 8.8 High2024-03-15
CVE-2024-2488 Tenda AC18 SetPptpServerCfg formSetPPTPServer stack-based overflow — AC18CWE-121 8.8 High2024-03-15
CVE-2024-2487 Tenda AC18 SetOnlineDevName formSetDeviceName stack-based overflow — AC18CWE-121 8.8 High2024-03-15
CVE-2024-2486 Tenda AC18 QuickIndex formQuickIndex stack-based overflow — AC18CWE-121 8.8 High2024-03-15
CVE-2024-2485 Tenda AC18 SetSpeedWan formSetSpeedWan stack-based overflow — AC18CWE-121 8.8 High2024-03-15

This page lists every published CVE security advisory associated with Tenda. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.