169 matches found
CVE-2021-40556
A stack overflow vulnerability exists in the httpd service in ASUS RT-AX56U Router Version 3.0.0.4.386.44266. This vulnerability is caused by the strcat function called by "caupload" input handle function allowing the user to enter 0xFFFF bytes into the stack. This vulnerability allows an attacke...
CVE-2021-40556
A stack overflow vulnerability exists in the httpd service in ASUS RT-AX56U Router Version 3.0.0.4.386.44266. This vulnerability is caused by the strcat function called by "caupload" input handle function allowing the user to enter 0xFFFF bytes into the stack. This vulnerability allows an attacke...
Tenda AX12 Buffer Overflow Vulnerability (CNVD-2022-38541)
Tenda AX12 is a dual-band Gigabit Wifi 6 wireless router from Tenda China.Tenda AX12 is vulnerable to a buffer overflow vulnerability, which originates from the /goform/setMacFilterCfg function in the httpd service that does not properly validate data boundaries when performing operations on...
Tenda AC9 Stack Overflow Vulnerability (CNVD-2022-38540)
Tenda AC9 is a wireless router from Tenda, a Chinese company. Tenda AC9 is vulnerable to a stack overflow vulnerability, which originates from the goform/fastsettingwifiset function in the httpd service that does not properly validate data boundaries when performing operations on memory, and can ...
CVE-2022-28561
There is a stack overflow vulnerability in the /goform/setMacFilterCfg function in the httpd service of Tenda ax12 22.03.01.21cn router. An attacker can obtain a stable shell through a carefully constructed payload...
CVE-2022-28560
There is a stack overflow vulnerability in the goform/fastsettingwifiset function in the httpd service of Tenda ac9 15.03.2.21cn router. An attacker can obtain a stable shell through a carefully constructed payload...
CVE-2022-28560
There is a stack overflow vulnerability in the goform/fastsettingwifiset function in the httpd service of Tenda ac9 15.03.2.21cn router. An attacker can obtain a stable shell through a carefully constructed payload...
CVE-2022-28561
There is a stack overflow vulnerability in the /goform/setMacFilterCfg function in the httpd service of Tenda ax12 22.03.01.21cn router. An attacker can obtain a stable shell through a carefully constructed payload...
CVE-2022-28561
There is a stack overflow vulnerability in the /goform/setMacFilterCfg function in the httpd service of Tenda ax12 22.03.01.21cn router. An attacker can obtain a stable shell through a carefully constructed payload...
CVE-2022-28561
The CVE-2022-28561 entry concerns the Tenda AX12 router (22.03.01.21_cn). A stack/buffer overflow is triggered in the httpd service via the /goform/setMacFilterCfg function when handling crafted input, allowing an attacker to obtain a stable shell. Public references in the document set describe a...
CVE-2022-28560
The CVE-2022-28560 entry concerns Tenda AC9 (firmware 15.03.2.21_cn) with a stack overflow in the httpd service’s goform/fast_setting_wifi_set function. This vulnerability allows an attacker to trigger a stable shell via a carefully crafted payload. CVSSv3.1 vector: Network, Privileges NONE, User...
Tenda AX12 缓冲区错误漏洞
Tenda AX12 is a dual-band Gigabit Wifi 6 wireless router from Tenda China.Tenda AX12 is vulnerable to a buffer overflow vulnerability, which originates from the /goform/setMacFilterCfg function in the httpd service that does not properly validate data boundaries when performing operations on...
Exploit for Classic Buffer Overflow in Asus Rt-Ax86U_Firmware
CVE-2020-36109-POC Feb 13 2021, Altin Thartori, github.com/t...
Tenda AC9 Stack Overflow Vulnerability (CNVD-2022-38543)
Tenda AC9 is a wireless router from Tenda, a Chinese company. Tenda AC9 has a security vulnerability that originates from a stack overflow in the SetSysTimeCfg function of the httpd service. An attacker could exploit the vulnerability to cause a server-side stack overflow...
CVE-2022-27022
There is a stack overflow vulnerability in the SetSysTimeCfg function in the httpd service of Tenda AC9 V15.03.2.21cn. The attacker can obtain a stable root shell through a constructed payload...
CVE-2022-27022
There is a stack overflow vulnerability in the SetSysTimeCfg function in the httpd service of Tenda AC9 V15.03.2.21cn. The attacker can obtain a stable root shell through a constructed payload...
CVE-2022-27022
There is a stack overflow vulnerability in the SetSysTimeCfg function in the httpd service of Tenda AC9 V15.03.2.21cn. The attacker can obtain a stable root shell through a constructed payload...
Stack overflow
There is a stack overflow vulnerability in the SetSysTimeCfg function in the httpd service of Tenda AC9 V15.03.2.21cn. The attacker can obtain a stable root shell through a constructed payload...
CVE-2022-27016
There is a stack overflow vulnerability in the SetStaticRouteCfg function in the httpd service of Tenda AC9 15.03.2.21cn...
Stack overflow
There is a stack overflow vulnerability in the SetStaticRouteCfg function in the httpd service of Tenda AC9 15.03.2.21cn...