GCVE - cpe:2.3:h:tendacn:g3:3.0:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:h:tendacn:g3:3.0:*:*:*:*:*:*:*

part: h version: 3.0 update: *

Vendor	Tendacn (`911f347d-94dc-5fe9-b545-6a7f771d2f53`)
Product	G3 (`bca8aac7-b96a-53cf-99a9-8b8a91b50682`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2024-8224`	not_vulnerable	2026-06-03 14:58:17.519055	Tenda G3 setDebugCfg formSetDebugCfg stack-based overflow HIGH (8.8) A vulnerability, which was classified as critical, has been found in Tenda G3 15.11.0.20. This issue affects the function formSetDebugCfg of the file /goform/setDebugCfg. The manipulation of the argument enable/level/module leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. NOTE: The vendor was contacted early about this disclosure but did not respond in any way. Published: 2024-08-27T23:00:07.675Z Updated: 2024-08-28T15:18:02.331Z Open on db.gcve.eu Reference links https://vuldb.com/?id.275933 https://vuldb.com/?ctiid.275933 https://vuldb.com/?submit.393999 https://github.com/abcdefg-png/AHU-IoT-vulnerable/blob/main/Tenda/G3V3.0/formSetDebugCfg.md https://www.tenda.com.cn/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-50854`	not_vulnerable	2026-06-03 14:57:25.428227	Details available Tenda G3 v3.0 v15.11.0.20 was discovered to contain a stack overflow via the formSetPortMapping function. Published: 2024-11-13T00:00:00.000Z Updated: 2025-03-14T17:03:32.853Z Open on db.gcve.eu Reference links https://github.com/zp9080/Tenda/blob/main/Tenda-G3v3.0%20V15.11.0.20-formSetPortMapping/overview.md	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-50853`	not_vulnerable	2026-06-03 14:57:25.427816	Details available Tenda G3 v3.0 v15.11.0.20 was discovered to contain a command injection vulnerability via the formSetDebugCfg function. Published: 2024-11-13T00:00:00.000Z Updated: 2024-11-21T16:42:03.474Z Open on db.gcve.eu Reference links https://github.com/zp9080/Tenda/blob/main/Tenda-G3v3.0%20V15.11.0.20-formSetDebugCfg/overview.md	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-50852`	not_vulnerable	2026-06-03 14:57:25.427054	Details available Tenda G3 v3.0 v15.11.0.20 was discovered to contain a command injection vulnerability via the formSetUSBPartitionUmount function. Published: 2024-11-13T00:00:00.000Z Updated: 2024-11-21T16:42:35.758Z Open on db.gcve.eu Reference links https://github.com/zp9080/Tenda/blob/main/Tenda-G3v3.0%20V15.11.0.20-formSetUSBPartitionUmount/overview.md	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.