Tenda W9 Firmware

Tenda W9 Hardcoded Password Vulnerability in /etc_ro/shadow
CVE-2024-52788 - November 19, 2024

Tenda W9 v1.0.0.7(4456) was discovered to contain a hardcoded password vulnerability in /etc_ro/shadow, which allows attackers to log in as root.

Tenda W9 1.0.0.7 Buffer Overflow in DhcpSetSer (VDB-262135)
CVE-2024-4244 8.8 - High - April 26, 2024

A vulnerability classified as critical was found in Tenda W9 1.0.0.7(4456). Affected by this vulnerability is the function fromDhcpSetSer of the file /goform/DhcpSetSer. The manipulation of the argument dhcpStartIp/dhcpEndIp/dhcpGw/dhcpMask/dhcpLeaseTime/dhcpDns1/dhcpDns2 leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-262135. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

Memory Corruption

Tenda W9 1.0.0.7 Buffer Overflow via ssidIndex
CVE-2024-4243 8.8 - High - April 26, 2024

A vulnerability classified as critical has been found in Tenda W9 1.0.0.7(4456). Affected is the function formwrlSSIDset of the file /goform/wifiSSIDset. The manipulation of the argument ssidIndex leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-262134 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

Memory Corruption

Tenda W9 1.0.0.7 Buffer Overflow in wifiSSIDget (critical)
CVE-2024-4242 8.8 - High - April 26, 2024

A vulnerability was found in Tenda W9 1.0.0.7(4456). It has been rated as critical. This issue affects the function formwrlSSIDget of the file /goform/wifiSSIDget. The manipulation of the argument ssidIndex leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-262133 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

Memory Corruption

Remote stackoverflow via ssidIndex in Tenda W9 formQosManageDouble_auto (1.0.0.7)
CVE-2024-4241 8.8 - High - April 26, 2024

A vulnerability was found in Tenda W9 1.0.0.7(4456). It has been declared as critical. This vulnerability affects the function formQosManageDouble_auto. The manipulation of the argument ssidIndex leads to stack-based buffer overflow. The attack can be initiated remotely. The identifier of this vulnerability is VDB-262132. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

Memory Corruption

Tenda W9 1.0.0.7 stack buf overflow via formQosManage
CVE-2024-4240 8.8 - High - April 26, 2024

A vulnerability was found in Tenda W9 1.0.0.7(4456). It has been classified as critical. This affects the function formQosManageDouble_user. The manipulation of the argument ssidIndex leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The associated identifier of this vulnerability is VDB-262131. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

Memory Corruption

Tenda W9 V1.0.0.7 Stack Overflow in formSetUplinkInfo
CVE-2023-51101 9.8 - Critical - December 26, 2023

Tenda W9 V1.0.0.7(4456)_CN was discovered to contain a stack overflow via the function formSetUplinkInfo.

Memory Corruption