13311 matches found
CVE-2024-4237 Tenda AX1806 execCommand R7WebsSecurityHandler stack-based overflow
A vulnerability, which was classified as critical, was found in Tenda AX1806 1.0.0.1. Affected is the function R7WebsSecurityHandler of the file /goform/execCommand. The manipulation of the argument password leads to stack-based buffer overflow. It is possible to launch the attack remotely. The...
CVE-2024-4237 Tenda AX1806 execCommand R7WebsSecurityHandler stack-based overflow
A vulnerability, which was classified as critical, was found in Tenda AX1806 1.0.0.1. Affected is the function R7WebsSecurityHandler of the file /goform/execCommand. The manipulation of the argument password leads to stack-based buffer overflow. It is possible to launch the attack remotely. The...
CVE-2024-4236
CVE-2024-4236 affects Tenda AX1803 1.0.0.1. The vulnerability resides in the function formSetSysToolDDNS of the file /goform/SetDDNSCfg, where manipulation of the arguments serverName, ddnsUser, ddnsPwd, and ddnsDomain leads to a stack-based buffer overflow. It is described as exploitable remotel...
CVE-2024-4236 Tenda AX1803 SetDDNSCfg formSetSysToolDDNS stack-based overflow
A vulnerability, which was classified as critical, has been found in Tenda AX1803 1.0.0.1. This issue affects the function formSetSysToolDDNS of the file /goform/SetDDNSCfg. The manipulation of the argument serverName/ddnsUser/ddnsPwd/ddnsDomain leads to stack-based buffer overflow. The attack ma...
Unspecified Vulnerability in Tenda 4G300
Tenda 4G300 is a wireless router from Tenda China. A security vulnerability exists in the Tenda 4G300 version 1.01.42, which stems from an incorrect manipulation of the parameter GO/page that can lead to a stack-based buffer overflow. No details of the vulnerability are provided at this time...
CentOS 9 : file-5.39-16.el9
The remote CentOS Linux 9 host has packages installed that are affected by a vulnerability as referenced in the file-5.39-16.el9 build changelog. - File before 5.43 has an stack-based buffer over-read in filecopystr in funcs.c. NOTE: File is the name of an Open Source project. CVE-2022-48554 Note...
Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to a denial of service in Fasterxml jackson-databind [CVE-2023-35116]
Summary IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to a denial of service in Fasterxml jackson-databind, caused by a stack-based overflow CVE-2023-35116. Fasterxml jackson-databind is used in our Speech microservices. This vulnerabilitiy has been addressed. Plea...
CVE-2024-4171 Tenda W30E WizardHandle fromWizardHandle stack-based overflow
A vulnerability classified as critical has been found in Tenda W30E 1.0/1.0.1.25. Affected is the function fromWizardHandle of the file /goform/WizardHandle. The manipulation of the argument PPW leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has be...
CVE-2024-4170
A vulnerability was found in Tenda 4G300 1.01.42. It has been rated as critical. This issue affects the function sub429A30. The manipulation of the argument list1 leads to stack-based buffer overflow. The attack may be initiated remotely. The identifier VDB-261989 was assigned to this...
CVE-2024-4169
A vulnerability was found in Tenda 4G300 1.01.42. It has been declared as critical. This vulnerability affects the function sub42775C/sub4279CC. The manipulation of the argument page leads to stack-based buffer overflow. The attack can be initiated remotely. The identifier of this vulnerability i...
CVE-2024-4170 Tenda 4G300 sub_429A30 stack-based overflow
A vulnerability was found in Tenda 4G300 1.01.42. It has been rated as critical. This issue affects the function sub429A30. The manipulation of the argument list1 leads to stack-based buffer overflow. The attack may be initiated remotely. The identifier VDB-261989 was assigned to this...
CVE-2024-4170 Tenda 4G300 sub_429A30 stack-based overflow
A vulnerability was found in Tenda 4G300 1.01.42. It has been rated as critical. This issue affects the function sub429A30. The manipulation of the argument list1 leads to stack-based buffer overflow. The attack may be initiated remotely. The identifier VDB-261989 was assigned to this...
CVE-2024-4170
Tenda 4G300 with firmware 1.01.42 is affected by a stack-based buffer overflow in the function sub_429A30 caused by manipulation of the list1 argument. The issue can be exploited remotely and is rated Critical (CVSS 3.1/3.0 ranges showing high impact). Several connected sources confirm the behavi...
CVE-2024-4169 Tenda 4G300 sub_4279CC stack-based overflow
A vulnerability was found in Tenda 4G300 1.01.42. It has been declared as critical. This vulnerability affects the function sub42775C/sub4279CC. The manipulation of the argument page leads to stack-based buffer overflow. The attack can be initiated remotely. The identifier of this vulnerability i...
CVE-2024-4169 Tenda 4G300 sub_4279CC stack-based overflow
A vulnerability was found in Tenda 4G300 1.01.42. It has been declared as critical. This vulnerability affects the function sub42775C/sub4279CC. The manipulation of the argument page leads to stack-based buffer overflow. The attack can be initiated remotely. The identifier of this vulnerability i...
CVE-2024-4168
A vulnerability was found in Tenda 4G300 1.01.42. It has been classified as critical. This affects the function sub4260F0. The manipulation of the argument upfilen leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The associated identifier of this vulnerability...
CVE-2024-4165
A vulnerability, which was classified as critical, was found in Tenda G3 15.11.0.179502. Affected is the function modifyDhcpRule of the file /goform/modifyDhcpRule. The manipulation of the argument bindDhcpIndex leads to stack-based buffer overflow. It is possible to launch the attack remotely. T...
CVE-2024-4167
A vulnerability was found in Tenda 4G300 1.01.42 and classified as critical. Affected by this issue is the function sub422AA4. The manipulation of the argument year/month/day/hour/minute/second leads to stack-based buffer overflow. The attack may be launched remotely. VDB-261986 is the identifier...
CVE-2024-4166
A vulnerability has been found in Tenda 4G300 1.01.42 and classified as critical. Affected by this vulnerability is the function sub41E858. The manipulation of the argument GO/page leads to stack-based buffer overflow. The attack can be launched remotely. The identifier VDB-261985 was assigned to...
CVE-2024-4168 Tenda 4G300 sub_4260F0 stack-based overflow
A vulnerability was found in Tenda 4G300 1.01.42. It has been classified as critical. This affects the function sub4260F0. The manipulation of the argument upfilen leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The associated identifier of this vulnerability...