CVE-2022-27022

CVE-2022-27022 is a stack overflow in the SetSysTimeCfg() function of the httpd service on Tenda AC9 V15.03.2.21_cn. An attacker can obtain a stable root shell via a crafted payload. Affected software: Tenda AC9 (httpd). Root cause: stack overflow in SetSysTimeCfg(); impact: remote code execution...

CVE-2022-27022

There is a stack overflow vulnerability in the SetSysTimeCfg function in the httpd service of Tenda AC9 V15.03.2.21cn. The attacker can obtain a stable root shell through a constructed payload...

CVE-2022-27016

There is a stack overflow vulnerability in the SetStaticRouteCfg function in the httpd service of Tenda AC9 15.03.2.21cn...

CVE-2022-27016

CVE-2022-27016 affects Tenda AC9, specifically the httpd service with firmware 15.03.2.21_cn. The vulnerability is a stack overflow in SetStaticRouteCfg(), as described across multiple sources (CNVD/CNNVD, NVD, Red Hat, CVE listing). Exploitation could allow an attacker to obtain a root shell via...

Tenda AC9 缓冲区错误漏洞

Tenda AC9 is a wireless router from Tenda, a Chinese company. Tenda AC9 has a security vulnerability that originates from a stack overflow in the SetSysTimeCfg function of the httpd service. An attacker could exploit the vulnerability to cause a server-side stack overflow...

httpd: Errors encountered during the discarding of request body lead to HTTP request smuggling

A flaw was found in httpd. The inbound connection is not closed when it fails to discard the request body, which may expose the server to HTTP request smuggling...

TP-Link TL-WR940N httpd newBridgessid Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of TP-Link TL-WR940N routers. Authentication is required to exploit this vulnerability. The specific flaw exists within the httpd service, which listens on TCP port 80 by default. The issue...

TP-Link TL-WR940N httpd Improper Access Control Information Disclosure Vulnerability

This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of TP-Link TL-WR940N routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the httpd service, which listens on TCP port 80 by default...

CVE-2021-34865

This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of multiple NETGEAR routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the minihttpd service, which listens on TCP port 80 by default. The...

PT-2021-6473 · NetGear · Netgear Rax50 +20

Name of the Vulnerable Software and Affected Versions: NETGEAR R6700v3 version 1.0.4.120 10.0.91 NETGEAR R6400 versions affected versions not specified NETGEAR R6400v2 versions affected versions not specified NETGEAR R6900P versions affected versions not specified NETGEAR R7000 versions affected...

PT-2021-6149 · Tp Link · Tp-Link Tl-Wr940N

Name of the Vulnerable Software and Affected Versions: TP-Link TL-WR940N version 3.20.1 Build 200316 Rel.34392n 5553 Description: This issue allows network-adjacent attackers to execute arbitrary code on affected installations of TP-Link TL-WR940N routers. Authentication is required to exploit th...

PT-2021-9681 · Apache · Apache Http Server

Name of the Vulnerable Software and Affected Versions: Apache HTTP Server versions 2.4.0 through 2.4.46 Description: The issue allows unprivileged local users to stop the httpd service on Windows. This was discovered by Ivan Zhakov. Recommendations: For Apache HTTP Server versions 2.4.0 through...

vulhub

This is a Docker Compose file for a vulnerability environment. It is a collection of services that can be used to test and demonstrate various types of vulnerabilities. The file is written in YAML format and defines the services, their ports, and the networks they use. The file contains several...

Netgear Won't Patch 45 Router Models Vulnerable to Serious Flaw

UPDATE Netgear will not patch 45 router models that are vulnerable to a high-severity remote code execution flaw, the router company revealed last week. However, the company says that routers that won’t receive updates are outdated or have reached EOL End of Life. The remote code execution...

NETGEAR R6700 Buffer Overflow Vulnerability (CNVD-2020-43667)

The NETGEAR R6700 is a wireless router from NETGEAR. A buffer overflow vulnerability exists in the httpd service in the NETGEAR R6700 version V1.0.4.8410.0.58, which originates when the program fails to properly validate the length of user-supplied data before copying it into a fixed stack-based...

CVE-2020-15416

This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR R6700 V1.0.4.8410.0.58 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the httpd service, which listens on TCP port 80 by...

CVE-2020-15416

This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR R6700 V1.0.4.8410.0.58 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the httpd service, which listens on TCP port 80 by...

(0Day) NETGEAR R6700 httpd Firmware Upload Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR R6700 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the httpd service, which listens on TCP port 80 by default. The issue...

PT-2020-13516 · Tenda · Tenda Ac6 +3

Name of the Vulnerable Software and Affected Versions: Tenda AC6 version 1.0 V15.03.05.19 multi TD01 Tenda AC9 version 1.0 V15.03.05.196318 CN Tenda AC9 version 3.0 V15.03.06.42 multi Tenda AC15 version 1.0 V15.03.05.19 multi TD01 Tenda AC18 version 15.03.05.196318 CN Description: A buffer overfl...

Denial of service

An issue was discovered in ASUSWRT 3.0.0.4.384.20308. An unauthenticated user can trigger a DoS of the httpd service via the /APPInstallation.asp?= URI...