Lucene search
+L

555 matches found

Cvelist
Cvelist
added 2022/10/27 12:0 a.m.30 views

CVE-2022-40874

Tenda AX1803 v1.0.0.1 was discovered to contain a heap overflow vulnerability in the GetParentControlInfo function, which can cause a denial of service attack through a carefully constructed http request...

7.8AI score0.00815EPSS
Exploits1References1
Cvelist
Cvelist
added 2022/10/27 12:0 a.m.35 views

CVE-2022-40875

Tenda AX1803 v1.0.0.1 was discovered to contain a heap overflow in the function GetParentControlInfo...

7.9AI score0.00815EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2022/10/27 12:0 a.m.3 views

PT-2022-25600 · Tenda · Tenda Ax1803

Name of the Vulnerable Software and Affected Versions: Tenda ax1803 version 1.0.0.1 Description: The issue concerns http requests handled by the fromAdvSetMacMtuWan functions, specifically the wanSpeed, cloneType, and mac variables, which can cause a stack overflow and enable remote code executio...

9.8CVSS9.8AI score0.01753EPSS
Exploits1References5
CVE
CVE
added 2022/10/27 12:0 a.m.69 views

CVE-2022-40876

The CVE-2022-40876 entry concerns Tenda AX1803 v1.0.0.1, where HTTP requests processed by the fromAdvSetMacMtuWan functions, specifically involving wanSpeed, cloneType, and mac, can trigger a stack overflow and enable remote code execution (RCE). Public references (NVD, Red Hat, CVE listings) cor...

9.8CVSS9.8AI score0.01753EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2022/10/27 12:0 a.m.4 views

PT-2022-25599 · Tenda · Tenda Ax1803

Name of the Vulnerable Software and Affected Versions: Tenda AX1803 version 1.0.0.1 Description: A heap overflow issue was discovered in the function GetParentControlInfo. Recommendations: For Tenda AX1803 version 1.0.0.1, consider disabling the GetParentControlInfo function as a temporary...

7.5CVSS7.7AI score0.00815EPSS
Exploits1References3
CNVD
CNVD
added 2022/10/14 12:0 a.m.42 views

Tenda AX1803 fromSysToolReboot Function Cross-Site Request Forgery Vulnerability

Tenda AX1803 is a dual-band Gigabit WIFI6 router from Tenda China. A cross-site request forgery vulnerability exists in the Tenda AX1803 firmware, version USAX1803v2.0brv1.0.0.12994CNZGYD014, which exists in the /bin/tdhttpd file fromSysToolReboot function/goform/SysToolReboot page. An attacker...

6.5CVSS6.3AI score0.00325EPSS
Exploits1References1
CNVD
CNVD
added 2022/10/14 12:0 a.m.59 views

Tenda AX1803 TendaAteMode Function Cross-Site Request Forgery Vulnerability

The Tenda AX1803 is a dual-band Gigabit WIFI6 router. A cross-site request forgery vulnerability exists in the Tenda AX1803 firmware, version USAX1803v2.0brv1.0.0.12994CNZGYD014, which exists in the /bin/tdhttpd file TendaAteMode function/goform/ateMode page, which can be exploited by an attacker...

6.5CVSS6.3AI score0.00325EPSS
Exploits1References1
NVD
NVD
added 2022/10/12 7:15 p.m.28 views

CVE-2022-42086

Tenda AX1803 USAX1803v2.0brv1.0.0.12994CNZGYD014 is vulnerable to Cross Site Request Forgery CSRF via function TendaAteMode...

6.5CVSS0.00325EPSS
Exploits1References1
NVD
NVD
added 2022/10/12 7:15 p.m.29 views

CVE-2022-42087

Tenda AX1803 USAX1803v2.0brv1.0.0.12994CNZGYD014 is vulnerable to Cross Site Request Forgery CSRF via function fromSysToolReboot...

6.5CVSS0.00325EPSS
Exploits1References1
OSV
OSV
added 2022/10/12 7:15 p.m.4 views

CVE-2022-42086

Tenda AX1803 USAX1803v2.0brv1.0.0.12994CNZGYD014 is vulnerable to Cross Site Request Forgery CSRF via function TendaAteMode...

6.5CVSS5.8AI score0.00325EPSS
Exploits1References1
OSV
OSV
added 2022/10/12 7:15 p.m.6 views

CVE-2022-42087

Tenda AX1803 USAX1803v2.0brv1.0.0.12994CNZGYD014 is vulnerable to Cross Site Request Forgery CSRF via function fromSysToolReboot...

6.5CVSS5.8AI score0.00325EPSS
Exploits1References1
Prion
Prion
added 2022/10/12 7:15 p.m.18 views

Cross site request forgery (csrf)

Tenda AX1803 USAX1803v2.0brv1.0.0.12994CNZGYD014 is vulnerable to Cross Site Request Forgery CSRF via function TendaAteMode...

4.3CVSS6.6AI score0.00325EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2022/10/12 7:15 p.m.24 views

Cross site request forgery (csrf)

Tenda AX1803 USAX1803v2.0brv1.0.0.12994CNZGYD014 is vulnerable to Cross Site Request Forgery CSRF via function fromSysToolReboot...

4.3CVSS6.6AI score0.00325EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2022/10/12 12:0 a.m.6 views

PT-2022-26244 · Tenda · Tenda Ax1803

Name of the Vulnerable Software and Affected Versions: Tenda AX1803 version US AX1803v2.0br v1.0.0.1 2994 CN ZGYD01 4 Description: The issue is related to Cross Site Request Forgery CSRF and is exploitable via the TendaAteMode function. Recommendations: For Tenda AX1803 version US AX1803v2.0br...

6.5CVSS6.5AI score0.00325EPSS
Exploits1References4
CVE
CVE
added 2022/10/12 12:0 a.m.60 views

CVE-2022-42086

CVE-2022-42086 affects the Tenda AX1803 router (firmware US_AX1803v2.0br_v1.0.0.1_2994_CN_ZGYD01_4). The vulnerability is a Cross-Site Request Forgery (CSRF) via the function TendaAteMode (page/goform/ateMode). Reports from CNVD/Red Hat/CNNVD and others confirm CSRF in the TendaAteMode pathway, w...

6.5CVSS6.5AI score0.00325EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2022/10/12 12:0 a.m.12 views

Tenda AX1803 跨站请求伪造漏洞

Tenda AX1803 is a dual-band Gigabit WIFI6 router from Tenda China. A cross-site request forgery vulnerability exists in the Tenda AX1803 firmware, version USAX1803v2.0brv1.0.0.12994CNZGYD014, which exists in the /bin/tdhttpd file fromSysToolReboot function/goform/SysToolReboot page. An attacker...

6.5CVSS6.8AI score0.00325EPSS
Exploits1References2
Cvelist
Cvelist
added 2022/10/12 12:0 a.m.34 views

CVE-2022-42086

Tenda AX1803 USAX1803v2.0brv1.0.0.12994CNZGYD014 is vulnerable to Cross Site Request Forgery CSRF via function TendaAteMode...

6.8AI score0.00325EPSS
Exploits1References1
CNNVD
CNNVD
added 2022/10/12 12:0 a.m.6 views

Tenda AX1803 跨站请求伪造漏洞

The Tenda AX1803 is a dual-band Gigabit WIFI6 router. A cross-site request forgery vulnerability exists in the Tenda AX1803 firmware, version USAX1803v2.0brv1.0.0.12994CNZGYD014, which exists in the /bin/tdhttpd file TendaAteMode function/goform/ateMode page, which can be exploited by an attacker...

6.5CVSS6.9AI score0.00325EPSS
Exploits1References2
CVE
CVE
added 2022/10/12 12:0 a.m.62 views

CVE-2022-42087

CVE-2022-42087 affects Tenda AX1803 router with firmware US_AX1803v2.0br_v1.0.0.1_2994_CN_ZGYD01_4. The issue is a CSRF in the /bin/tdhttpd function fromSysToolReboot, enabling unauthorized requests that can lead to a denial of service (CVSS v3.1: AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H; base score 6...

6.5CVSS6.5AI score0.00325EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/10/12 12:0 a.m.37 views

CVE-2022-42087

Tenda AX1803 USAX1803v2.0brv1.0.0.12994CNZGYD014 is vulnerable to Cross Site Request Forgery CSRF via function fromSysToolReboot...

6.8AI score0.00325EPSS
Exploits1References1
Rows per page
Query Builder