PT-2023-7624 · Tenda · Tenda Ac23

Name of the Vulnerable Software and Affected Versions: Tenda AC23 version 16.03.07.45 Description: The issue is related to a stack-based buffer overflow in the formSetSysToolDDNS/formGetSysToolDDNS function of the /bin/httpd file. This can be exploited by a remote attacker to cause a denial of...

Fedora: Security Advisory for httpd (FEDORA-2023-6d4055d482)

The remote host is missing an update for the Copyright C 2023 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

CVE-2023-0617

A vulnerability was found in TRENDNet TEW-811DRU 1.0.10.0. It has been classified as critical. This affects an unknown part of the file /wireless/guestnetwork.asp of the component httpd. The manipulation leads to buffer overflow. It is possible to initiate the attack remotely. The exploit has bee...

Buffer overflow

A vulnerability was found in TRENDNet TEW-811DRU 1.0.10.0. It has been classified as critical. This affects an unknown part of the file /wireless/guestnetwork.asp of the component httpd. The manipulation leads to buffer overflow. It is possible to initiate the attack remotely. The exploit has bee...

CVE-2023-0617 TRENDNet TEW-811DRU httpd guestnetwork.asp buffer overflow

A vulnerability was found in TRENDNet TEW-811DRU 1.0.10.0. It has been classified as critical. This affects an unknown part of the file /wireless/guestnetwork.asp of the component httpd. The manipulation leads to buffer overflow. It is possible to initiate the attack remotely. The exploit has bee...

CVE-2023-0617

CVE-2023-0617 affects TRENDNet TEW-811DRU v1.0.10.0. The vulnerability resides in the httpd component, specifically the /wireless/guestnetwork.asp file, where manipulation leads to a buffer overflow. It supports remote initiation and has publicly disclosed exploit information. The CVSS data in so...

CVE-2023-0613 TRENDnet TEW-811DRU httpd security.asp memory corruption

A vulnerability has been found in TRENDnet TEW-811DRU 1.0.10.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /wireless/security.asp of the component httpd. The manipulation leads to memory corruption. The attack can be launched remotely. The...

CVE-2023-0612 TRENDnet TEW-811DRU httpd basic.asp buffer overflow

A vulnerability, which was classified as critical, was found in TRENDnet TEW-811DRU 1.0.10.0. Affected is an unknown function of the file /wireless/basic.asp of the component httpd. The manipulation leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been...

CVE-2023-0612

The CVE-2023-0612 entry concerns TRENDnet TEW-811DRU (version 1.0.10.0) with a vulnerability in the httpd component, specifically an unknown-function in /wireless/basic.asp. The underlying issue is a buffer overflow that can be triggered remotely, making it a network-exposed issue. According to t...

TRENDnet TEW-811DRU 安全漏洞

The TRENDnet TEW-811DRU is a wireless router from TRENDnet. A security vulnerability exists in the TRENDnet TEW-811DRU version 1.0.10.0, which originates from a buffer overflow due to an unknown section in the wireless/guestnetwork.asp file of the component httpd...

TRENDnet TEW-811DRU 缓冲区错误漏洞

The TRENDnet TEW-811DRU is a wireless router from Trendnet, Inc. A buffer error vulnerability exists in the TRENDnet TEW-811DRU version 1.0.10.0, which originates from an unknown function in the file /wireless/security.asp of the component httpd, resulting in memory corruption...

Critical Photon OS Security Update - PHSA-2023-4.0-0325

Updates of 'mysql', 'httpd' packages of Photon OS have been released...

Critical Photon OS Security Update - PHSA-2023-3.0-0522

Updates of 'vim', 'httpd', 'gnupg' packages of Photon OS have been released...

CLSA-2023-1675111939 httpd: Fix of CVE-2022-36760

CVE-2022-36760: modproxyajp: fix possible HTTP request smuggling...

CLSA-2023-1675111708 httpd: Fix of CVE-2022-36760

CVE-2022-36760: modproxyajp: fix possible HTTP request smuggling...

CVE-2022-38451

A directory traversal vulnerability exists in the httpd update.cgi functionality of FreshTomato 2022.5. A specially crafted HTTP request can lead to arbitrary file read. An attacker can send an HTTP request to trigger this vulnerability...

CVE-2022-38451

CVE-2022-38451 is a directory traversal vulnerability in FreshTomato 2022.5 (and related firmware derived from it, e.g., Siretta QUARTZ-GOLD). TALOS-2022-1642 documents a flaw in FreshTomato’s httpd update.cgi: the wo_update path builds /var/notice/ from an unsanitized exec/arg parameter, leading...

FreshTomato 路径遍历漏洞

FreshTomato is a Linux-based open source firmware from FreshTomato Open Source. The firmware provides a variety of features for Broadcom-based routers. A security vulnerability exists in FreshTomato version 2022.5, which stems from its httpd update.cgi function that allows an attacker to cause...

PT-2023-14122 · Unknown · Freshtomato

Name of the Vulnerable Software and Affected Versions: FreshTomato version 2022.5 Description: A specially crafted HTTP request can lead to arbitrary command execution due to an OS command injection vulnerability in the httpd logs/view.cgi functionality. This allows an attacker to send an HTTP...

EulerOS Virtualization 3.0.2.2 : httpd (EulerOS-SA-2023-1260)

According to the versions of the httpd packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Apache HTTP Server versions 2.4.0 to 2.4.46 A specially crafted Digest nonce can cause a stack overflow in modauthdigest. There is...