379 matches found
Tenda AC7 /goform/SetDDNSCfg File Buffer Overflow Vulnerability
Tenda AC7 is a wireless router from Tenda, a Chinese company. A buffer overflow vulnerability exists in Tenda AC7 version 15.03.06.44, which originates from the parameter ddnsEn in the file /goform/SetDDNSCfg that fails to correctly validate the length and size of the input data, and can be...
PT-2025-41326
Name of the Vulnerable Software and Affected Versions Tenda AC7 version 15.03.06.44 Description A stack-based buffer overflow exists in Tenda AC7 routers due to improper processing of the ddnsEn argument within the /goform/SetDDNSCfg file. This manipulation allows for remote code execution. The...
CVE-2025-11328
A vulnerability was detected in Tenda AC18 15.03.05.196318. This issue affects some unknown processing of the file /goform/SetDDNSCfg. The manipulation of the argument ddnsEn results in stack-based buffer overflow. It is possible to launch the attack remotely. The exploit is now public and may be...
EUVD-2019-10628
Malware in sbrugna...
EUVD-2018-17510
Malware in sbrugna...
EUVD-2008-1524
Malware in sbrugna...
EUVD-2018-8412
Malware in sbrugna...
EUVD-2019-10632
Malware in sbrugna...
Tenda AC15 安全漏洞
Tenda AC15 is a dual-band wireless router launched by Shenzhen Jixiang Tenda Technology Co. in October 2015, which supports 802.11ac protocol and is mainly designed for home network environment. Tenda AC15 has a stack buffer overflow vulnerability, which originates from the parameter ddnsEn in th...
PT-2025-40977
Name of the Vulnerable Software and Affected Versions Tenda AC15 version 15.03.05.18 Description A buffer overflow can occur due to the manipulation of the ddnsEn argument within a POST request to the /goform/SetDDNSCfg file. This impacts an unknown function of the POST Parameter Handler componen...
EUVD-2023-49757
Malicious code in bioql PyPI...
EUVD-2022-42523
Malicious code in bioql PyPI...
EUVD-2025-12539
Malicious code in bioql PyPI...
[SECURITY] Fedora 43 Update: kea-3.0.1-1.fc43
DHCP implementation from Internet Systems Consortium, Inc. that features fully functional DHCPv4, DHCPv6 and Dynamic DNS servers. Both DHCP servers fully support server discovery, address assignment, renewal, rebinding and release. The DHCPv6 server supports prefix delegation. Both servers suppor...
Brave Desktop 1.81.131 Security Fixes
Added clickjacking protection on DDNS interstitials as reported on HackerOne by newfunction. - Fixed inactive split view tab displaying a permission prompt as reported on HackerOne by frozzipies. Upgraded Chromium to 139.0.7258.66 — refer to Google Chrome advisories for inherited CVEs...
[SECURITY] Fedora 42 Update: kea-2.6.3-1.fc42
DHCP implementation from Internet Systems Consortium, Inc. that features fully functional DHCPv4, DHCPv6 and Dynamic DNS servers. Both DHCP servers fully support server discovery, address assignment, renewal, rebinding and release. The DHCPv6 server supports prefix delegation. Both servers suppor...
[SECURITY] Fedora 41 Update: kea-2.6.3-1.fc41
DHCP implementation from Internet Systems Consortium, Inc. that features fully functional DHCPv4, DHCPv6 and Dynamic DNS servers. Both DHCP servers fully support server discovery, address assignment, renewal, rebinding and release. The DHCPv6 server supports prefix delegation. Both servers suppor...
TencentOS Server 3: bind (TSSA-2023:0287)
The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2023:0287 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...
Brave Desktop 1.79.123 Security Fixes
Fixed missing DDNS navigation throttle for subframes as reported on HackerOne by newfunction. Upgraded Chromium to 137.0.7151.104 — refer to Google Chrome advisories for inherited CVEs...
CVE-2023-22325
A denial of service vulnerability exists in the DCRegister DDNSRPCMAXRECVSIZE functionality of SoftEther VPN 4.41-9782-beta, 5.01.9674 and 5.02. A specially crafted network packet can lead to denial of service. An attacker can perform a man-in-the-middle attack to trigger this vulnerability...