Tenda I22 Firmware
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Tenda I22 Firmware.
By the Year
In 2026 there have been 0 vulnerabilities in Tenda I22 Firmware. I22 Firmware did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 0 | 0.00 |
| 2024 | 6 | 9.08 |
| 2023 | 0 | 0.00 |
| 2022 | 10 | 7.30 |
It may take a day or so for new I22 Firmware vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Tenda I22 Firmware Security Vulnerabilities
Tenda i22 v1.0.0.3 Null Pointer Dereference in websReadEvent Function
CVE-2024-10750
6.5 - Medium
- November 04, 2024
A vulnerability has been found in Tenda i22 1.0.0.3(4687) and classified as problematic. Affected by this vulnerability is the function websReadEvent of the file /goform/GetIPTV?fgHPOST/goform/SysToo. The manipulation of the argument Content-Length leads to null pointer dereference. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
NULL Pointer Dereference
Tenda i22 1.0.0.3 Buffer Overflow in formApPortalWebAuth (Remote)
CVE-2024-7585
9.8 - Critical
- August 07, 2024
A vulnerability has been found in Tenda i22 1.0.0.3(4687) and classified as critical. Affected by this vulnerability is the function formApPortalWebAuth of the file /goform/apPortalAuth. The manipulation of the argument webUserName/webUserPassword leads to buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
Classic Buffer Overflow
Critical BOF in Tenda i22 1.0.0.3 apPortalPhoneAuth
CVE-2024-7584
9.8 - Critical
- August 07, 2024
A vulnerability, which was classified as critical, was found in Tenda i22 1.0.0.3(4687). Affected is the function formApPortalPhoneAuth of the file /goform/apPortalPhoneAuth. The manipulation of the argument data leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
Classic Buffer Overflow
Tenda i22 1.0.0.3 Buffer Overflow via formApPortalOneKeyAuth
CVE-2024-7583
9.8 - Critical
- August 07, 2024
A vulnerability, which was classified as critical, has been found in Tenda i22 1.0.0.3(4687). This issue affects the function formApPortalOneKeyAuth of the file /goform/apPortalOneKeyAuth. The manipulation of the argument data leads to buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
Memory Corruption
Tenda i22 1.0.0.3 Critical Buffer Overflow in /goform/apPortalAccessCodeAuth
CVE-2024-7582
9.8 - Critical
- August 07, 2024
A vulnerability classified as critical was found in Tenda i22 1.0.0.3(4687). This vulnerability affects the function formApPortalAccessCodeAuth of the file /goform/apPortalAccessCodeAuth. The manipulation of the argument accessCode/data/acceInfo leads to buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
Memory Corruption
Buffer Overflow in Tenda i22 1.0.0.3(4687) formSetUrlFilterRule (groupIndex)
CVE-2024-4252
8.8 - High
- April 27, 2024
A vulnerability classified as critical has been found in Tenda i22 1.0.0.3(4687). This affects the function formSetUrlFilterRule. The manipulation of the argument groupIndex leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The associated identifier of this vulnerability is VDB-262143. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
Memory Corruption
Buffer Overflow in Tenda i22 V1.0.0.3 formwrlSSIDset list param
CVE-2022-45666
7.5 - High
- December 20, 2022
Tenda i22 V1.0.0.3(4687) was discovered to contain a buffer overflow via the list parameter in the formwrlSSIDset function.
Classic Buffer Overflow
Tenda i22 V1.0.0.3 Bypass via BO in funcpara1 of formSetCfm
CVE-2022-45665
7.5 - High
- December 20, 2022
Tenda i22 V1.0.0.3(4687) was discovered to contain a buffer overflow via the funcpara1 parameter in the formSetCfm function.
Classic Buffer Overflow
Tenda i22 V1.0.0.3 CSRF via fromSysToolRestoreSet
CVE-2022-45667
6.5 - Medium
- December 02, 2022
Tenda i22 V1.0.0.3(4687) is vulnerable to Cross Site Request Forgery (CSRF) via function fromSysToolRestoreSet.
Session Riding
Tenda i22 V1.0.0.3 Buffer Overflow in formWx3AuthorizeSet
CVE-2022-45672
7.5 - High
- December 02, 2022
Tenda i22 V1.0.0.3(4687) was discovered to contain a buffer overflow via the formWx3AuthorizeSet function.
Classic Buffer Overflow
Tenda i22 V1.0.0.3 Buffer Overflow in formSetAppFilterRule (appData)
CVE-2022-45671
7.5 - High
- December 02, 2022
Tenda i22 V1.0.0.3(4687) was discovered to contain a buffer overflow via the appData parameter in the formSetAppFilterRule function.
Classic Buffer Overflow
Tenda i22 V1.0.0.3 Buffer Overflow in formSetAutoPing ping1
CVE-2022-45670
7.5 - High
- December 02, 2022
Tenda i22 V1.0.0.3(4687) was discovered to contain a buffer overflow via the ping1 parameter in the formSetAutoPing function.
Classic Buffer Overflow
Tenda i22 V1.0.0.3 Buffer Overflow via formWifiMacFilterGet
CVE-2022-45669
7.5 - High
- December 02, 2022
Tenda i22 V1.0.0.3(4687) was discovered to contain a buffer overflow via the index parameter in the formWifiMacFilterGet function.
Classic Buffer Overflow
Tenda i22 V1.0.0.3 CSRF via fromSysToolReboot
CVE-2022-45668
6.5 - Medium
- December 02, 2022
Tenda i22 V1.0.0.3(4687) is vulnerable to Cross Site Request Forgery (CSRF) via function fromSysToolReboot.
Session Riding
Tenda i22 Buffer Overflow via formwrlSSIDget (V1.0.0.3)
CVE-2022-45664
7.5 - High
- December 02, 2022
Tenda i22 V1.0.0.3(4687) was discovered to contain a buffer overflow via the list parameter in the formwrlSSIDget function.
Classic Buffer Overflow
Buffer Overflow in Tenda i22 V1.0.0.3 formWifiMacFilterSet
CVE-2022-45663
7.5 - High
- December 02, 2022
Tenda i22 V1.0.0.3(4687) was discovered to contain a buffer overflow via the index parameter in the formWifiMacFilterSet function.
Classic Buffer Overflow
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Tenda I22 Firmware or by Tenda? Click the Watch button to subscribe.
