Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

105 matches found

RedhatCVE
RedhatCVEadded 2026/03/26 3:4 p.m.1 views

CVE-2026-3974

A vulnerability was identified in Tenda W3 1.0.0.32204. This vulnerability affects the function formexeCommand of the file /goform/exeCommand of the component HTTP Handler. Such manipulation of the argument cmdinput leads to stack-based buffer overflow. The attack may be performed from remote. Th...

9CVSS7.9AI score0.00106EPSS
Exploits1References1
OSV
OSVadded 2026/03/19 6:31 p.m.1 views

GHSA-5VRW-QJXW-89R5 Metricbeat Allocates Memory with Excessive Size Value Leading to Denial of Service

Memory Allocation with Excessive Size Value CWE-789 in the Prometheus remotewrite HTTP handler in Metricbeat can lead Denial of Service via Excessive Allocation CAPEC-130...

5.7CVSS5.8AI score0.00022EPSS
Exploits0References4
ATTACKERKB
ATTACKERKBadded 2026/03/19 5:5 p.m.0 views

CVE-2026-26931

Memory Allocation with Excessive Size Value CWE-789 in the Prometheus remotewrite HTTP handler in Metricbeat can lead Denial of Service via Excessive Allocation CAPEC-130...

5.7CVSS5.8AI score0.00022EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/03/12 2:2 a.m.1 views

CVE-2026-3974

A vulnerability was identified in Tenda W3 1.0.0.32204. This vulnerability affects the function formexeCommand of the file /goform/exeCommand of the component HTTP Handler. Such manipulation of the argument cmdinput leads to stack-based buffer overflow. The attack may be performed from remote. Th...

9CVSS6.4AI score0.00106EPSS
Exploits1References5Affected Software1
Vulnrichment
Vulnrichmentadded 2026/03/12 2:2 a.m.0 views

CVE-2026-3974 Tenda W3 HTTP exeCommand formexeCommand stack-based overflow

A vulnerability was identified in Tenda W3 1.0.0.32204. This vulnerability affects the function formexeCommand of the file /goform/exeCommand of the component HTTP Handler. Such manipulation of the argument cmdinput leads to stack-based buffer overflow. The attack may be performed from remote. Th...

9CVSS8AI score0.00106EPSS
Exploits1References5
ATTACKERKB
ATTACKERKBadded 2026/03/12 1:32 a.m.0 views

CVE-2026-3972

A vulnerability was found in Tenda W3 1.0.0.32204. Affected by this issue is the function formSetCfm of the file /goform/setcfm of the component HTTP Handler. The manipulation of the argument funcpara1 results in stack-based buffer overflow. The attack can only be performed from the local network...

8.8CVSS6.3AI score0.00188EPSS
Exploits1References5Affected Software1
EUVD
EUVDadded 2026/03/12 1:32 a.m.2 views

EUVD-2026-11503

A vulnerability was found in Tenda W3 1.0.0.32204. Affected by this issue is the function formSetCfm of the file /goform/setcfm of the component HTTP Handler. The manipulation of the argument funcpara1 results in stack-based buffer overflow. The attack can only be performed from the local network...

8.8CVSS6.3AI score0.00188EPSS
Exploits1References5
Positive Technologies
Positive Technologiesadded 2026/03/12 12:0 a.m.1 views

PT-2026-24914

A vulnerability was identified in Tenda W3 1.0.0.32204. This vulnerability affects the function formexeCommand of the file /goform/exeCommand of the component HTTP Handler. Such manipulation of the argument cmdinput leads to stack-based buffer overflow. The attack may be performed from remote. Th...

9CVSS6.4AI score0.00106EPSS
Exploits1References6
Vulnrichment
Vulnrichmentadded 2025/12/29 7:2 a.m.1 views

CVE-2025-15177 Tenda WH450 HTTP Request SetIpBind stack-based overflow

A vulnerability has been found in Tenda WH450 1.0.0.18. This vulnerability affects unknown code of the file /goform/SetIpBind of the component HTTP Request Handler. The manipulation of the argument page leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has be...

8.6CVSS7.2AI score0.00191EPSS
Exploits3References6
Positive Technologies
Positive Technologiesadded 2025/12/29 12:0 a.m.3 views

PT-2025-53704

Name of the Vulnerable Software and Affected Versions Tenda WH450 version 1.0.0.18 Description A flaw exists in the HTTP Request Handler component of Tenda WH450 version 1.0.0.18. The issue relates to stack-based buffer overflow triggered by manipulating the page argument when processing the file...

8.6CVSS7.1AI score0.00341EPSS
Exploits1References9
Positive Technologies
Positive Technologiesadded 2025/12/23 12:0 a.m.2 views

PT-2025-52852

Name of the Vulnerable Software and Affected Versions Tenda WH450 version 1.0.0.18 Description A stack-based buffer overflow exists in the HTTP Request Handler component of the Tenda WH450. The issue is triggered by manipulating the Username argument in the '/goform/PPTPDClient' file. The attack...

10CVSS7AI score0.00525EPSS
Exploits1References13
RedhatCVE
RedhatCVEadded 2025/10/10 5:22 p.m.2 views

CVE-2025-11549

A vulnerability has been found in Tenda W12 3.0.0.63948. The affected element is the function wifiMacFilterSet of the file /goform/modules of the component HTTP Request Handler. The manipulation of the argument mac leads to stack-based buffer overflow. The attack is possible to be carried out...

9.8CVSS7AI score0.00561EPSS
Exploits1References1
OSV
OSVadded 2025/10/08 1:15 a.m.0 views

CVE-2025-11418

A security vulnerability has been detected in Tenda CH22 up to 1.0.0.1. This issue affects the function formWrlsafeset of the file /goform/AdvSetWrlsafeset of the component HTTP Request Handler. The manipulation of the argument mitssidindex leads to stack-based buffer overflow. The attack may be...

9.3CVSS6.5AI score
Exploits0References5
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2014-7848

Malware in sbrugna...

7.7CVSS6.4AI score0.00201EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2019-1161

Malware in sbrugna...

5.3CVSS7.3AI score0.00247EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2017-11026

Malware in sbrugna...

5.5CVSS5.6AI score0.00131EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2025-16953

Malicious code in bioql PyPI...

9.8CVSS8.8AI score0.01329EPSS
Exploits0References6
Snyk
Snykadded 2025/09/10 5:59 p.m.1 views

Memory Allocation with Excessive Size Value

Overview isc.org/stork/backend/server/restservice is an open source ISC project providing a monitoring application and dashboard for ISC Kea DHCP and eventually ISC BIND 9. Affected versions of this package are vulnerable to Memory Allocation with Excessive Size Value via the http.Handler functio...

8.7CVSS7AI score0.00203EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/08/31 12:4 a.m.2 views

CVE-2025-9579

A weakness has been identified in LB-LINK BL-X26 1.2.8. The impacted element is an unknown function of the file /goform/sethidessidcfg of the component HTTP Handler. This manipulation of the argument enable causes os command injection. The attack can be initiated remotely. The exploit has been ma...

8.8CVSS7AI score0.00981EPSS
Exploits1References1
OSV
OSVadded 2025/08/28 7:15 p.m.0 views

CVE-2025-9579

A weakness has been identified in LB-LINK BL-X26 1.2.8. The impacted element is an unknown function of the file /goform/sethidessidcfg of the component HTTP Handler. This manipulation of the argument enable causes os command injection. The attack can be initiated remotely. The exploit has been ma...

8.8CVSS5.7AI score0.00981EPSS
Exploits1References5
Rows per page
Query Builder