Vulnerabilities in Tenda

762 results
Vexday analysis

O portfólio de vulnerabilidades da Tenda acumula 757 CVEs catalogadas, volume expressivo que, aliado às 116 entradas surgidas nos últimos 90 dias, indica ritmo elevado de descobertas recentes e superfície de ataque em expansão. Embora nenhuma vulnerabilidade conste no catálogo KEV da CISA — taxa abaixo da média geral do catálogo —, a existência de 130 CVEs com prova de conceito pública representa risco operacional concreto, pois reduz significativamente a barreira para exploração oportunista. O tipo de falha mais frequente é CWE-121 (stack-based buffer overflow), classe que historicamente viabiliza execução remota de código em dispositivos de rede embarcados. A CVE mais perigosa em destaque atualmente é CVE-2024-10697, com score EPSS de 0,2551, indicando probabilidade não trivial de exploração e merecedora de atenção prioritária em planos de remediação.

CVE-2025-2996MEDIUMTenda FH1202 Web Management Interface SysToolDDNS access controlEPSS 0.7%CVE-2025-8958HIGHTenda TX3 fast_setting_wifi_set stack-based overflowEPSS 0.7%CVE-2026-2185HIGHTenda RX3 MAC Filtering Configuration Endpoint setBlackRule set_device_name stack-based overflowEPSS 0.7%CVE-2025-9443HIGHTenda CH22 editUserName formeditUserName buffer overflowEPSS 0.7%CVE-2026-2871HIGHTenda A21 SetIpMacBind fromSetIpMacBind stack-based overflowEPSS 0.7%CVE-2025-4896HIGHTenda AC10 UserCongratulationsExec buffer overflowEPSS 0.7%CVE-2025-12272HIGHTenda CH22 addressNat fromAddressNat buffer overflowEPSS 0.7%CVE-2025-15178HIGHTenda WH450 HTTP Request VirtualSer stack-based overflowEPSS 0.7%CVE-2025-15177HIGHTenda WH450 HTTP Request SetIpBind stack-based overflowEPSS 0.7%CVE-2025-11091HIGHTenda AC21 SetStaticRouteCfg sscanf buffer overflowEPSS 0.7%CVE-2025-15162HIGHTenda WH450 RouteStatic stack-based overflowEPSS 0.7%CVE-2025-15163HIGHTenda WH450 SafeEmailFilter stack-based overflowEPSS 0.7%CVE-2025-15164HIGHTenda WH450 SafeMacFilter stack-based overflowEPSS 0.7%CVE-2026-6124HIGHTenda F451 httpd SafeMacFilter fromSafeMacFilter stack-based overflowEPSS 0.7%CVE-2026-1610CRITICALTenda AX12 Pro V2 Telnet Service hard-coded credentialsEPSS 0.7%CVE-2026-6120HIGHTenda F451 httpd DhcpListClient fromDhcpListClient stack-based overflowEPSS 0.7%CVE-2025-14993HIGHTenda AC18 HTTP Request SetDlnaCfg sprintf stack-based overflowEPSS 0.7%CVE-2026-5687HIGHTenda CX12L NatStaticSetting fromNatStaticSetting stack-based overflowEPSS 0.7%CVE-2026-5604HIGHTenda CH22 Parameter CertLocalPrecreate formCertLocalPrecreate stack-based overflowEPSS 0.7%CVE-2026-5686HIGHTenda CX12L RouteStatic fromRouteStatic stack-based overflowEPSS 0.7%