Vulnerabilities in Tenda
757 resultsCVE-2026-0640HIGHTenda AC23 PowerSaveSet sscanf buffer overflowEPSS 3.0%CVE-2026-6989MEDIUMTenda F453 Telnet Service telnet TendaTelnet command injectionEPSS 2.9%CVE-2026-8264MEDIUMTenda AC6 httpd WifiApScan formWifiApScan os command injectionEPSS 2.9%CVE-2025-14655HIGHTenda AC20 httpd SetSysAutoRebbotCfg formSetRebootTimer stack-based overflowEPSS 2.9%CVE-2025-15218HIGHTenda AC10U POST Request Parameter AdvSetLanip fromadvsetlanip buffer overflowEPSS 2.9%CVE-2025-14654HIGHTenda AC20 httpd setPptpUserList formSetPPTPUserList stack-based overflowEPSS 2.9%CVE-2025-15252HIGHTenda M3 setDhcpAP formSetRemoteDhcpForAp stack-based overflowEPSS 2.9%CVE-2025-7795HIGHTenda FH451 P2pListFilter fromP2pListFilter stack-based overflowEPSS 2.8%CVE-2026-2910HIGHTenda HG9 formPing6 stack-based overflowEPSS 2.6%CVE-2026-4906HIGHTenda AC5 POST Request WizardHandle decodePwd stack-based overflowEPSS 2.6%CVE-2026-3808HIGHTenda FH1202 webtypelibrary formWebTypeLibrary stack-based overflowEPSS 2.6%CVE-2026-5204HIGHTenda CH22 Parameter webtypelibrary formWebTypeLibrary stack-based overflowEPSS 2.5%CVE-2025-15234HIGHTenda M3 setInternetLanInfo formSetRemoteInternetLanInfo heap-based overflowEPSS 2.5%CVE-2026-1687MEDIUMTenda HG10 Boa Webserver formSamba command injectionEPSS 2.4%CVE-2026-1689MEDIUMTenda HG10 Login formLogin checkUserFromLanOrWan command injectionEPSS 2.3%CVE-2025-27129CRITICALAn authentication bypass vulnerability exists in the HTTP authentication functionality of Tenda AC6 V5.0 V02.03.01.110. A specially crafted EPSS 2.0%CVE-2024-2809HIGHTenda AC15 SetFirewallCfg formSetFirewallCfg stack-based overflowEPSS 1.9%CVE-2026-5547MEDIUMTenda AC10 httpd formAddMacfilterRule os command injectionEPSS 1.9%CVE-2024-3907HIGHTenda AC500 setcfm formSetCfm stack-based overflowEPSS 1.9%CVE-2024-2896HIGHTenda AC7 WifiWpsStart formWifiWpsStart stack-based overflowEPSS 1.9%