Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Tenda — Vulnerabilities & Security Advisories 735

Browse all 735 CVE security advisories affecting Tenda. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Tenda operates primarily as a manufacturer of consumer networking hardware, including Wi-Fi routers and range extenders, targeting residential and small business markets. The company’s product line has been associated with a significant volume of security issues, currently totaling 730 recorded CVEs. Historically, these vulnerabilities frequently involve remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from inadequate input validation and weak authentication mechanisms in embedded web interfaces. Notable incidents include the discovery of hardcoded credentials and command injection points that allow unauthenticated attackers to gain full administrative control over devices. These systemic weaknesses highlight persistent challenges in the security development lifecycle for budget-oriented IoT equipment, resulting in widespread exposure to botnet recruitment and network compromise.

Found 20 results / 735Clear Filters
Top products by Tenda: CH22 AC15 FH1202 F453 AC7 F456 AC18 AC10U FH451 WH450 AC20 AC8 AC6 F451 AC10 i21 W15E AC23 W9 O3 FH1201 AC9 AC21 FH1205 M3 O3V2 AC5 AC1206 W12 A15
CVE IDTitleCVSSSeverityPublished
CVE-2026-4254 Tenda AC8 HTTP Endpoint SysToolChangePwd doSystemCmd stack-based overflow — AC8CWE-121 9.8 Critical2026-03-16
CVE-2026-4253 Tenda AC8 Web UploadCfg route_set_user_policy_rule os command injection — AC8CWE-78 4.7 Medium2026-03-16
CVE-2026-4252 Tenda AC8 IPv6 check_is_ipv6 ip address for authentication — AC8CWE-291 9.8 Critical2026-03-16
CVE-2026-3044 Tenda AC8 Httpd Service UploadCfg webCgiGetUploadFile stack-based overflow — AC8CWE-121 8.8 High2026-02-23
CVE-2026-2203 Tenda AC8 Embedded Httpd Service fast_setting_wifi_set buffer overflow — AC8CWE-120 8.8 High2026-02-09
CVE-2026-2202 Tenda AC8 httpd WifiGuestSet fromSetWifiGusetBasic buffer overflow — AC8CWE-120 8.8 High2026-02-09
CVE-2025-12618 Tenda AC8 DatabaseIniSet buffer overflow — AC8CWE-120 8.8 High2025-11-03
CVE-2025-11120 Tenda AC8 SetServerConfig formSetServerConfig buffer overflow — AC8CWE-120 8.8 High2025-09-28
CVE-2025-5799 Tenda AC8 WifiExtraSet fromSetWirelessRepeat stack-based overflow — AC8CWE-121 8.8 High2025-06-06
CVE-2025-5798 Tenda AC8 SetSysTimeCfg fromSetSysTime stack-based overflow — AC8CWE-121 8.8 High2025-06-06
CVE-2025-4368 Tenda AC8 MtuSetMacWan formGetRouterStatus buffer overflow — AC8CWE-120 8.8 High2025-05-06
CVE-2025-1853 Tenda AC8 Parameter SetIpMacBind sub_49E098 stack-based overflow — AC8CWE-121 8.8 High2025-03-03
CVE-2025-0528 Tenda AC8/AC10/AC18 HTTP Request telnet command injection — AC8CWE-77 7.2 High2025-01-17
CVE-2024-11745 Tenda AC8 SetStaticRouteCfg route_static_check stack-based overflow — AC8CWE-121 8.8 High2024-11-26
CVE-2024-10130 Tenda AC8 SetSysAutoRebbotCfg formSetRebootTimer stack-based overflow — AC8CWE-121 8.8 High2024-10-18
CVE-2024-10123 Tenda AC8 saveParentControlInfo compare_parentcontrol_time stack-based overflow — AC8CWE-121 8.8 High2024-10-18
CVE-2024-4066 Tenda AC8 AdvSetMacMtuWan fromAdvSetMacMtuWan stack-based overflow — AC8CWE-121 8.8 High2024-04-23
CVE-2024-4065 Tenda AC8 SetRebootTimer formSetRebootTimer stack-based overflow — AC8CWE-121 8.8 High2024-04-23
CVE-2024-4064 Tenda AC8 execCommand R7WebsSecurityHandler stack-based overflow — AC8CWE-121 8.8 High2024-04-23
CVE-2023-4744 Tenda AC8 formSetDeviceName stack-based overflow — AC8CWE-121 9.8 Critical2023-09-03

This page lists every published CVE security advisory associated with Tenda. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.