PT-2025-38484

Name of the Vulnerable Software and Affected Versions Cognex In-Sight Explorer and In-Sight Camera Firmware affected versions not specified Description Cognex In-Sight Explorer and In-Sight Camera Firmware expose a telnet-based service on port 23 for management operations, including firmware...

CVE-2025-50755

The CVE-2025-50755 entry concerns the Wavlink WN535K3 router (firmware version 20191010). A command injection flaw exists in the set_sys_cmd function via the command parameter, enabling attackers to execute arbitrary commands through a crafted request. The issue is treated across multiple feeds (...

CVE-2025-50757

Wavlink WN535K3 20191010 was found to contain a command injection vulnerability in the setsysadm function via the username parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request...

PT-2025-35570

Name of the Vulnerable Software and Affected Versions: Wavlink WN535K3 version 20191010 Description: The Wavlink WN535K3 router contains a command injection vulnerability in the set sys cmd function through the command parameter. This allows attackers to execute arbitrary commands via a crafted...

CVE-2025-55603

Tenda AX3 V16.03.12.10CN is vulnerable to Buffer Overflow in the fromSetSysTime function via the ntpServer parameter...

CVE-2025-55603

CVE-2025-55603 affects Tenda AX3 V16.03.12.10_CN. The vulnerability is a buffer overflow in the fromSetSysTime function triggered by the ntpServer parameter, as described across multiple sources (CNVD/CNNVD/RH/NVD). Impact is high: potential instability or crash (DoS) with high confidentiality/in...

PT-2025-34058 · Tenda · Tenda Ac6

Name of the Vulnerable Software and Affected Versions: Tenda AC6 version 15.03.06.23 multi Description: The device contains a buffer overflow through the ntpServer parameter in the fromSetSysTime function. Recommendations: At the moment, there is no information about a newer version that contains...

Tenda AC8 安全漏洞

Tenda AC8 is a wireless router from Tenda, a Chinese company. The Tenda AC8 suffers from a buffer overflow vulnerability, which originates from the parameter timeType in the file /goform/SetSysTimeCfg that fails to properly validate the length of the input data, which can be exploited by an...

CVE-2025-5573

A vulnerability was found in D-Link DCS-932L 2.18.01. It has been rated as critical. Affected by this issue is the function setSystemWizard/setSystemControl of the file /setSystemWizard. The manipulation of the argument AdminID leads to os command injection. The attack may be launched remotely. T...

CVE-2023-51625

D-Link DCS-8300LHV2 ONVIF SetSystemDateAndTime Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DCS-8300LHV2 IP cameras. Although authentication is required to exploit this...

CVE-2023-51616

D-Link DIR-X3260 prog.cgi SetSysEmailSettings Stack-Based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-X3260 routers. Authentication is required to exploit this...

CVE-2024-2855

A vulnerability classified as critical was found in Tenda AC15 15.03.05.18/15.03.05.19/15.03.20. Affected by this vulnerability is the function fromSetSysTime of the file /goform/SetSysTimeCfg. The manipulation of the argument time leads to stack-based buffer overflow. The attack can be launched...

PT-2023-19481 · Tenda · Tenda Ax3

Name of the Vulnerable Software and Affected Versions: Tenda AX3 version 16.03.12.11 Description: A stack overflow issue was discovered via the timeType function at the "/goform/SetSysTimeCfg" API endpoint. Recommendations: For Tenda AX3 version 16.03.12.11, consider disabling access to the...

Tenda i21 缓冲区错误漏洞

Tenda i21 is a wireless access point from Tenda China. A security vulnerability exists in Tenda i21 version V1.0.0.144656, which was discovered to contain a stack overflow vulnerability via /goform/setSysPwd...

CVE-2022-43028

Tenda TX3 USTX3V1.0brV16.03.13.11multiTDE01 was discovered to contain a stack overflow via the timeZone parameter at /goform/SetSysTimeCfg...

CVE-2022-43029

Tenda TX3 USTX3V1.0brV16.03.13.11multiTDE01 was discovered to contain a stack overflow via the time parameter at /goform/SetSysTimeCfg...

Tenda TX3 缓冲区错误漏洞

Tenda TX3 is a wireless router from Tenda, a Chinese company. A security vulnerability exists in Tenda TX3 that originates from a stack overflow contained in the timeZone parameter of /goform/SetSysTimeCfg. No details of the vulnerability are provided at this time...

PT-2022-26713 · Tenda · Tenda Tx3

Name of the Vulnerable Software and Affected Versions: Tenda TX3 version US TX3V1.0br V16.03.13.11 multi TDE01 Description: A stack overflow issue was discovered via the time parameter at the "/goform/SetSysTimeCfg" API endpoint. This issue can be exploited, potentially leading to unintended...

CVE-2022-25440

Tenda AC9 v15.03.2.21 was discovered to contain a stack overflow via the ntpserver parameter in the SetSysTimeCfg function...

CVE-2022-25457

Tenda AC6 v15.03.05.09multi was discovered to contain a stack overflow via the ntpserver parameter in the SetSysTimeCfg function...