47 matches found
Samba Print Configuration Checker
This Python script is a lightweight configuration analysis tool designed to inspect Samba smb.conf printing settings and identify potentially unsafe print command configurations associated with command injection risks. It's written to target versions 4.22.10, 4.23.8 and 4.24.3...
Astra Linux - уязвимость в linux-6.1, linux-5.15
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix Out-of-Bounds Write in ksmbdvfsstreamwrite An offset from client could be a negative value, It could allows to write data outside the bounds of the allocated buffer. Note that this issue is coming when setting 'vfs...
CVE-2026-31255
A command injection vulnerability exists in Tenda AC18 V15.03.05.05multi. The vulnerability is located in the /goform/SetSambaCfg interface, where improper handling of the guestuser parameter allows attackers to execute arbitrary system commands...
CVE-2026-31255
Summary: CVE-2026-31255 concerns a command-injection vulnerability in the Tenda AC18 router. The flaw is located in the /goform/SetSambaCfg interface, where improper handling of the guestuser parameter allows an attacker to execute arbitrary system commands. The affected product/version is Tenda ...
EUVD-2026-25898
A command injection vulnerability exists in Tenda AC18 V15.03.05.05multi. The vulnerability is located in the /goform/SetSambaCfg interface, where improper handling of the guestuser parameter allows attackers to execute arbitrary system commands...
CVE-2026-2906
A security flaw has been discovered in Tenda HG9 300001138. Affected is an unknown function of the file /boaform/formSamba of the component Samba Configuration Endpoint. The manipulation of the argument sambaCap results in stack-based buffer overflow. The attack may be launched remotely. The...
CVE-2026-2906
A security flaw has been discovered in Tenda HG9 300001138. Affected is an unknown function of the file /boaform/formSamba of the component Samba Configuration Endpoint. The manipulation of the argument sambaCap results in stack-based buffer overflow. The attack may be launched remotely. The...
CVE-2026-2906
The vulnerability CVE-2026-2906 affects Tenda HG9 (model 300001138) with a flaw in the Samba Configuration Endpoint; specifically, an unknown function in /boaform/formSamba allows manipulation of the sambaCap argument, causing a stack-based buffer overflow. The issue is described as exploitable r...
CVE-2026-2906
A security flaw has been discovered in Tenda HG9 300001138. Affected is an unknown function of the file /boaform/formSamba of the component Samba Configuration Endpoint. The manipulation of the argument sambaCap results in stack-based buffer overflow. The attack may be launched remotely. The...
CVE-2026-2906 Tenda HG9 Samba Configuration Endpoint formSamba stack-based overflow
A security flaw has been discovered in Tenda HG9 300001138. Affected is an unknown function of the file /boaform/formSamba of the component Samba Configuration Endpoint. The manipulation of the argument sambaCap results in stack-based buffer overflow. The attack may be launched remotely. The...
CVE-2026-2906 Tenda HG9 Samba Configuration Endpoint formSamba stack-based overflow
A security flaw has been discovered in Tenda HG9 300001138. Affected is an unknown function of the file /boaform/formSamba of the component Samba Configuration Endpoint. The manipulation of the argument sambaCap results in stack-based buffer overflow. The attack may be launched remotely. The...
Tenda HG9 安全漏洞
The Tenda HG9 is a WiFi router produced by the Chinese company Tenda. The Tenda HG9 300001138 version has a security vulnerability. This vulnerability stems from incorrect handling of the parameter “sambaCap” in the file/boaform/formSamba of the Samba Configuration Endpoint component, which may...
CVE-2025-57639
OS Command injection vulnerability in Tenda AC9 1.0 was discovered to contain a command injection vulnerability via the usb.samba.guest.user parameter in the formSetSambaConf function of the httpd file...
Tenda CH22 /goform/SetSambaConf File Buffer Overflow Vulnerability
Tenda CH22 is an enterprise-grade wireless router from Tenda brand. The Tenda CH22 suffers from a buffer overflow vulnerability that originates from the parameter sambauserNameSda in file /goform/SetSambaConf that fails to correctly validate the length and size of the input data, which can be...
Tenda CH22 安全漏洞
Tenda CH22 is an enterprise-grade wireless router from Tenda brand. The Tenda CH22 suffers from a buffer overflow vulnerability that originates from the parameter sambauserNameSda in file /goform/SetSambaConf that fails to correctly validate the length and size of the input data, which can be...
Tenda AC18 Weak Password Vulnerability
Tenda AC18 is a dual-band wireless router launched by Shenzhen Jixiang Tenda Technology Co. in July 2016, mainly for villas and large home users. Tenda AC18 suffers from a weak password vulnerability that originates from a code flaw in the /etcro/smb.conf file in the Samba component. No detailed...
CVE-2025-8182
A vulnerability has been found in Tenda AC18 15.03.05.19 and classified as problematic. This vulnerability affects unknown code of the file /etcro/smb.conf of the component Samba. The manipulation leads to weak password requirements. The attack can be initiated remotely. The complexity of an atta...
CVE-2025-8182 Tenda AC18 Samba smb.conf weak password
A vulnerability has been found in Tenda AC18 15.03.05.19 and classified as problematic. This vulnerability affects unknown code of the file /etcro/smb.conf of the component Samba. The manipulation leads to weak password requirements. The attack can be initiated remotely. The complexity of an atta...
Tenda AC9 安全漏洞
Tenda AC9 is a wireless router from Tenda, a Chinese company. Tenda AC9 suffers from a command injection vulnerability, which arises from the formSetSambaConf function usbname parameter failing to correctly filter the construct command special characters, commands, etc. The vulnerability can be...
CVE-2024-57583
Tenda AC18 V15.03.05.19 was discovered to contain a command injection vulnerability via the usbName parameter in the formSetSambaConf function...