CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedhatCVE•added 2026/05/28 2:15 p.m.•11 views

CVE-2026-9628

A weakness has been identified in UTT HiPER 1200GW up to 2.5.3-170306. Affected is an unknown function of the file /goform/formPptpClientConfig of the component Web Management Interface. This manipulation of the argument PPTP server address/username/password/tunnel name causes stack-based buffer...

9CVSS7.8AI score0.00472EPSS

ATTACKERKB•added 2026/05/27 1:0 a.m.•5 views

CVE-2026-9628

9CVSS7.8AI score0.00472EPSS

Exploits0References4Affected Software1

CVE•added 2026/05/27 1:0 a.m.•18 views

CVE-2026-9628

Summary : CVE-2026-9628 impacts UTT HiPER 1200GW (up to version 2.5.3-170306) via the Web Management Interface. The vulnerability is in /goform/formPptpClientConfig, where manipulating the PPTP server address/username/password/tunnel name triggers a stack-based buffer overflow. The flaw’s attack ...

9CVSS7.8AI score0.00472EPSS

RedhatCVE•added 2026/05/26 8:14 p.m.•6 views

CVE-2026-9382

A flaw has been found in Edimax BR-6675nD 1.12. Affected by this issue is the function formPPTPSetup of the file /goform/formPPTPSetup of the component POST Request Handler. Executing a manipulation of the argument pptpUserName can lead to buffer overflow. The attack may be launched remotely. The...

9CVSS7.8AI score0.00751EPSS

RedhatCVE•added 2026/05/26 2:12 p.m.•7 views

CVE-2026-9431

A vulnerability was identified in Tenda F1202 1.2.0.20408. This affects the function fromPptpUserAdd of the file /goform/PptpUserAdd. The manipulation of the argument opttype leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit is publicly available and might be...

9CVSS8AI score0.00738EPSS

NVD•added 2026/05/25 7:16 a.m.•7 views

CVE-2026-9428

9CVSS0.00579EPSS

Vulnrichment•added 2026/05/25 5:45 a.m.•5 views

CVE-2026-9431 Tenda F1202 PptpUserAdd fromPptpUserAdd stack-based overflow

9CVSS8AI score0.00738EPSS

ATTACKERKB•added 2026/05/25 5:0 a.m.•7 views

CVE-2026-9428

9CVSS7.7AI score0.00579EPSS

Exploits0References5Affected Software1

Positive Technologies•added 2026/05/25 12:0 a.m.•7 views

PT-2026-43007

9CVSS7.7AI score0.00579EPSS

CNNVD•added 2026/05/25 12:0 a.m.•7 views

Tenda F1202 安全漏洞

The Tenda F1202 is a dual-band Wi-Fi router with fifth-generation technology from Tenda, China. A security vulnerability exists in the Tenda F1202 version 1.2.0.20408, which originates from manipulation of the parameter delno of the function fromPPTPUserSetting in the file /goform/PPTPUserSetting...

9CVSS7.6AI score0.00579EPSS

CVE•added 2026/05/24 1:0 p.m.•19 views

CVE-2026-9382

Edimax BR-6675nD (firmware 1.12) is affected by a buffer overflow in the POST Request Handler’s formPPTPSetup function, triggered by manipulating the pptpUserName argument. The vulnerability allows a remote attacker to exploit via network access (no user interaction required) and has a published ...

9CVSS7.8AI score0.00751EPSS

NVD•added 2026/05/18 2:16 a.m.•9 views

CVE-2026-8776

A vulnerability has been found in Edimax BR-6428NS 1.10. This vulnerability affects the function formPPTPSetup of the file /goform/formPPTPSetup of the component POST Request Handler. Such manipulation of the argument pptpUserName leads to buffer overflow. It is possible to launch the attack...

9CVSS0.00445EPSS

Vulnrichment•added 2026/05/18 12:45 a.m.•6 views

CVE-2026-8776 Edimax BR-6428NS POST Request formPPTPSetup buffer overflow

9CVSS7.7AI score0.00445EPSS

CVE•added 2026/05/18 12:45 a.m.•12 views

CVE-2026-8776

Edimax BR-6428NS v1.10 is affected by CVE-2026-8776 due to a buffer overflow in POST Request Handler’s formPPTPSetup (pptpUserName). The issue can be exploited remotely; public exploit exists and exploit maturity is PROOF-OF-CONCEPT. Vendor did not respond to disclosure. CVSS metrics indicate HIG...

9CVSS7.7AI score0.00445EPSS

CNNVD•added 2026/05/18 12:0 a.m.•6 views

Edimax BR-6428nS 缓冲区错误漏洞

The Edimax BR-6428nS is a wireless router produced by Edimax Corporation. The Edimax BR-6428NS v41.10 version has a buffer overflow vulnerability. This vulnerability stems from the function formPPTPSetup in the POST Request Handler component, which handles the parameter pptpUserName and results i...

9CVSS7.6AI score0.00445EPSS

Exploits0References2

NVD•added 2026/05/08 5:16 a.m.•15 views

CVE-2026-8138

A vulnerability was found in Tenda CX12L 16.03.53.12. This issue affects the function formSetPPTPServer of the file /goform/SetPptpServerCfg”. The manipulation results in stack-based buffer overflow. The attack can be executed remotely. The exploit has been made public and could be used...

9CVSS0.00568EPSS

Exploits1References5

RedhatCVE•added 2026/05/04 8:21 p.m.•3 views

CVE-2026-7683

A weakness has been identified in Edimax BR-6428nC up to 1.16. This affects an unknown function of the file /goform/setWAN of the component Web Interface. This manipulation of the argument pppUserName/pptpUserName causes command injection. The attack can be initiated remotely. The exploit has bee...

6.5CVSS6.3AI score0.01543EPSS

RedhatCVE•added 2026/05/04 8:21 p.m.•2 views

CVE-2026-7684

A security vulnerability has been detected in Edimax BR-6428nC up to 1.16. This impacts an unknown function of the file /goform/setWAN. Such manipulation of the argument pptpDfGateway leads to buffer overflow. The attack can be launched remotely. The exploit has been disclosed publicly and may be...

9CVSS7.7AI score0.00481EPSS

RedhatCVE•added 2026/05/04 8:21 p.m.•2 views

CVE-2026-7685

A vulnerability was detected in Edimax BR-6208AC up to 1.02. Affected is an unknown function of the file /goform/setWAN. Performing a manipulation of the argument pptpDfGateway results in buffer overflow. The attack may be initiated remotely. The exploit is now public and may be used. The vendor...

9CVSS7.7AI score0.00481EPSS