Tenda AC6 Firmware 02.03.01.26

CPE Details

Tenda AC6 Firmware 02.03.01.26
tenda
ac6_firmware
02.03.01.26
2023-09-12
15h30 +00:00
2023-09-12
15h30 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:o:tenda:ac6_firmware:02.03.01.26:*:*:*:*:*:*:*

Informations

Vendor

tenda

Product

ac6_firmware

Version

02.03.01.26

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2025-50528 2025-06-27 00h00 +00:00 A buffer overflow vulnerability exists in the fromNatStaticSetting function of Tenda AC6 <=V15.03.05.19 via the page parameter.
7.3
High
CVE-2024-52275 2024-12-04 10h20 +00:00 Stack-based Buffer Overflow vulnerability in Shenzhen Tenda Technology Co Tenda AC6V2 (fromWizardHandle modules) allows Overflow Buffers.This issue affects Tenda AC6V2: through 15.03.06.50.
8.3
High
CVE-2024-52274 2024-12-04 10h19 +00:00 Stack-based Buffer Overflow vulnerability in Shenzhen Tenda Technology Co Tenda AC6V2 (setDoubleL2tpConfig->guest_ip_check(overflow arg: mask) modules) allows Overflow Buffers.This issue affects Tenda AC6V2: through 15.03.06.50
8.3
High
CVE-2024-52273 2024-12-04 10h19 +00:00 Stack-based Buffer Overflow vulnerability in Shenzhen Tenda Technology Co Tenda AC6V2 (setDoublePppoeConfig->guest_ip_check(overflow arg: mask) modules) allows Overflow Buffers.This issue affects Tenda AC6V2: through 15.03.06.50
8.3
High
CVE-2024-52272 2024-12-04 10h18 +00:00 Stack-based Buffer Overflow vulnerability in Shenzhen Tenda Technology Co Tenda AC6V2 (fromAdvSetLanip(overflow arg:lanMask) modules) allows Overflow Buffers.This issue affects Tenda AC6V2: through 15.03.06.50
8.3
High
CVE-2021-40546 2023-09-04 22h00 +00:00 Tenda AC6 US_AC6V4.0RTL_V02.03.01.26_cn.bin allows attackers (who have the administrator password) to cause a denial of service (device crash) via a long string in the wifiPwd_5G parameter to /goform/setWifi.
4.9
Medium
The information presented on CVE Find originates from several carefully selected reference sources. CVE data is provided by MITRE Corporation and the National Vulnerability Database (NVD). The Known Exploited Vulnerabilities (KEV) catalog is sourced from the Cybersecurity and Infrastructure Security Agency (CISA), while EPSS scores come from FIRST.org. Additionally, data regarding software weaknesses (CWE) and common attack patterns (CAPEC) is maintained by MITRE Corporation, and information on hardware and software configurations (CPE) is provided by the NVD.