PT-2025-36912

Name of the Vulnerable Software and Affected Versions: TP-Link AX10 Ax1500 version 1.3.10 Build 20230130 Description: An issue in TP-Link AX10 Ax1500 allows a remote attacker to obtain sensitive information. Recommendations: At the moment, there is no information about a newer version that contai...

CVE-2025-9961

CVE-2025-9961 involves a stack-based buffer overflow in TP-Link’s CWMP binary on AX10 and AX1500 routers, enabling authenticated RCE via a MITM-exploited SetParameterValues flow. Affected: AX10 (before 1.2.1) and AX1500 (before 1.3.11). Root cause: improper bounds checking in the cwmp service lea...

TP-LINK AX10和TP-LINK AX1500 安全漏洞

TP-LINK AX10 and TP-LINK AX1500 are both products of China P&L TP-LINK.TP-LINK AX10 is a router.TP-LINK AX1500 is a modem. A security vulnerability exists in the TP-LINK AX10 version prior to 1.2.1 and the TP-LINK AX1500 version prior to 1.3.11, which stems from the CWMP binary could be used to...

PT-2025-34440 · Tenda · Tenda Ax3

Name of the Vulnerable Software and Affected Versions: Tenda AX3 version 16.03.12.10 CN Description: The Tenda AX3 device is susceptible to a buffer overflow issue in the saveParentControlInfo function. The vulnerability is triggered through the deviceName parameter. Recommendations: Update to a...

CVE-2014-125125

A path traversal vulnerability exists in A10 Networks AX Loadbalancer versions 2.6.1-GR1-P5, 2.7.0, and earlier. The vulnerability resides in the handling of the filename parameter in the /xml/downloads endpoint, which fails to properly sanitize user input. An unauthenticated attacker can exploit...

CVE-2014-125125

A path traversal vulnerability exists in A10 Networks AX Loadbalancer versions 2.6.1-GR1-P5, 2.7.0, and earlier. The vulnerability resides in the handling of the filename parameter in the /xml/downloads endpoint, which fails to properly sanitize user input. An unauthenticated attacker can exploit...

CVE-2014-125125

CVE-2014-125125 describes a path traversal flaw in A10 Networks AX Loadbalancer (versions 2.6.1-GR1-P5, 2.7.0, and earlier) where the filename parameter in the /xml/downloads endpoint is not properly sanitized. An unauthenticated attacker can craft HTTP requests with directory traversal sequences...

CVE-2014-125125 A10 Networks AX Loadbalancer Path Traversal

A path traversal vulnerability exists in A10 Networks AX Loadbalancer versions 2.6.1-GR1-P5, 2.7.0, and earlier. The vulnerability resides in the handling of the filename parameter in the /xml/downloads endpoint, which fails to properly sanitize user input. An unauthenticated attacker can exploit...

CVE-2014-125125 A10 Networks AX Loadbalancer Path Traversal

A path traversal vulnerability exists in A10 Networks AX Loadbalancer versions 2.6.1-GR1-P5, 2.7.0, and earlier. The vulnerability resides in the handling of the filename parameter in the /xml/downloads endpoint, which fails to properly sanitize user input. An unauthenticated attacker can exploit...

PT-2025-31545 · Undefined · Undefined

A path traversal vulnerability exists in A10 Networks AX Loadbalancer versions 2.6.1-GR1-P5, 2.7.0, and earlier. The vulnerability resides in the handling of the filename parameter in the /xml/downloads endpoint, which fails to properly sanitize user input. An unauthenticated attacker can exploit...

CVE-2024-7608

An authenticated user can access the restricted files from NX, EX, FX, AX, IVX and CMS using path traversal...

CVE-2022-24702

An issue was discovered in WinAPRS 2.9.0. A buffer overflow in the VHF KISS TNC component allows a remote attacker to achieve remote code execution via malicious AX.25 packets over the air. NOTE: This vulnerability only affects products that are no longer supported by the maintainer...

CVE-2022-24700

An issue was discovered in WinAPRS 2.9.0. A buffer overflow in DIGI address processing for VHF KISS packets allows a remote attacker to cause a denial of service daemon crash via a malicious AX.25 packet over the air. NOTE: This vulnerability only affects products that are no longer supported by...

The vulnerability of the SNAP Lite component allows for manipulation of the control and monitoring systems in the energy and water supply sectors of SISCO MMS-EASE and AX-S4 ICCP, enabling a perpetrator to cause service interruptions.

The vulnerability of the SNAP Lite component in the system for managing and monitoring processes related to energy and water supply in SISCO MMS-EASE and AX-S4 ICCP is related to unlimited distribution of resources. Exploiting this vulnerability can allow a malicious actor to cause service...

CVE-2022-27287

D-Link DIR-619 Ax v1.00 was discovered to contain a stack overflow in the function formSetWanPPPoE. This vulnerability allows attackers to cause a Denial of Service DoS via the curTime parameter...

CVE-2020-9449

An insecure random number generation vulnerability in BlaB! AX, BlaB! AX Pro, BlaB! WS client, and BlaB! WS Pro client version 19.11 allows an attacker with a guest or user session cookie to escalate privileges by retrieving the cookie salt value and creating a valid session cookie for an arbitra...

CVE-2012-4028

Tridium Niagara AX Framework does not properly store credential data, which allows context-dependent attackers to bypass intended access restrictions by using the stored information for authentication...

CVE-2019-13528

A specific utility may allow an attacker to gain read access to privileged files in the Niagara AX 3.8u4 JACE 3e, JACE 6e, JACE 7, JACE-8000, Niagara 4.4u3 JACE 3e, JACE 6e, JACE 7, JACE-8000, and Niagara 4.7u1 JACE-8000, Edge 10...

CVE-2012-3024

Tridium Niagara AX Framework through 3.6 uses predictable values for 1 session IDs and 2 keys, which might allow remote attackers to bypass authentication via a brute-force attack...

CVE-2010-0607

Cross-site scripting XSS vulnerability in Forms/statusstatistics1 in the Sterlite SAM300 AX Router allows remote attackers to inject arbitrary web script or HTML via the StatRadio parameter...