Vulnerabilities in Tenda

762 results
Vexday analysis

O portfólio de vulnerabilidades da Tenda acumula 757 CVEs catalogadas, volume expressivo que, aliado às 116 entradas surgidas nos últimos 90 dias, indica ritmo elevado de descobertas recentes e superfície de ataque em expansão. Embora nenhuma vulnerabilidade conste no catálogo KEV da CISA — taxa abaixo da média geral do catálogo —, a existência de 130 CVEs com prova de conceito pública representa risco operacional concreto, pois reduz significativamente a barreira para exploração oportunista. O tipo de falha mais frequente é CWE-121 (stack-based buffer overflow), classe que historicamente viabiliza execução remota de código em dispositivos de rede embarcados. A CVE mais perigosa em destaque atualmente é CVE-2024-10697, com score EPSS de 0,2551, indicando probabilidade não trivial de exploração e merecedora de atenção prioritária em planos de remediação.

CVE-2026-6133HIGHTenda F451 SafeUrlFilter fromSafeUrlFilter stack-based overflowEPSS 0.5%CVE-2026-6136HIGHTenda F451 L7Im frmL7ImForm stack-based overflowEPSS 0.5%CVE-2025-24322HIGHAn unsafe default authentication vulnerability exists in the Initial Setup Authentication functionality of Tenda AC6 V5.0 V02.03.01.110. A sEPSS 0.5%CVE-2026-5962MEDIUMTenda CH22 httpd R7WebsSecurityHandlerfunction path traversalEPSS 0.5%CVE-2026-7036MEDIUMTenda i9 HTTP R7WebsSecurityHandlerfunction path traversalEPSS 0.5%CVE-2026-2876HIGHTenda A18 setBlackRule parse_macfilter_rule stack-based overflowEPSS 0.5%CVE-2025-3237MEDIUMTenda FH1202 wrlwpsset access controlEPSS 0.5%CVE-2026-2147MEDIUMTenda AC21 Web Management DownloadLog information disclosureEPSS 0.5%CVE-2026-6123HIGHTenda F451 httpd addressNat fromAddressNat stack-based overflowEPSS 0.5%CVE-2026-7470HIGHTenda 4G300 SafeMacFilter sub_427C3C stack-based overflowEPSS 0.5%CVE-2026-5550HIGHTenda AC10 httpd fromSysToolChangePwd stack-based overflowEPSS 0.5%CVE-2026-5991HIGHTenda F451 WrlExtraSet formWrlExtraSet stack-based overflowEPSS 0.5%CVE-2026-5989HIGHTenda F451 RouteStatic fromRouteStatic stack-based overflowEPSS 0.5%CVE-2026-6137HIGHTenda F451 AdvSetWan fromAdvSetWan stack-based overflowEPSS 0.5%CVE-2026-5992HIGHTenda F451 P2pListFilter fromP2pListFilter stack-based overflowEPSS 0.5%CVE-2026-6121HIGHTenda F451 httpd WrlclientSet stack-based overflowEPSS 0.5%CVE-2026-5990HIGHTenda F451 SafeEmailFilter fromSafeEmailFilter stack-based overflowEPSS 0.5%CVE-2026-5988HIGHTenda F451 AdvSetWrlsafeset formWrlsafeset stack-based overflowEPSS 0.5%CVE-2026-4489HIGHTenda A18 Pro fast_setting_wifi_set form_fast_setting_wifi_set stack-based overflowEPSS 0.5%CVE-2026-10192HIGHTenda W12 httpd set_local_time_0 stack-based overflowEPSS 0.5%