13311 matches found
CVE-2024-3909
A vulnerability classified as critical was found in Tenda AC500 2.0.1.91307. Affected by this vulnerability is the function formexeCommand of the file /goform/execCommand. The manipulation of the argument cmdinput leads to stack-based buffer overflow. The attack can be launched remotely. The...
CVE-2024-3910
CVE-2024-3910 affects Tenda AC500 2.0.1.9(1307). The flaw is in the fromDhcpListClient function (file /goform/DhcpListClient) where manipulating the page parameter causes a stack-based buffer overflow. Impact is described as remote code execution with high severity/impact across confidentiality, ...
CVE-2024-3910 Tenda AC500 DhcpListClient fromDhcpListClient stack-based overflow
A vulnerability, which was classified as critical, has been found in Tenda AC500 2.0.1.91307. Affected by this issue is the function fromDhcpListClient of the file /goform/DhcpListClient. The manipulation of the argument page leads to stack-based buffer overflow. The attack may be launched...
CVE-2024-3910 Tenda AC500 DhcpListClient fromDhcpListClient stack-based overflow
A vulnerability, which was classified as critical, has been found in Tenda AC500 2.0.1.91307. Affected by this issue is the function fromDhcpListClient of the file /goform/DhcpListClient. The manipulation of the argument page leads to stack-based buffer overflow. The attack may be launched...
CVE-2024-3909 Tenda AC500 execCommand formexeCommand stack-based overflow
A vulnerability classified as critical was found in Tenda AC500 2.0.1.91307. Affected by this vulnerability is the function formexeCommand of the file /goform/execCommand. The manipulation of the argument cmdinput leads to stack-based buffer overflow. The attack can be launched remotely. The...
CVE-2024-3909 Tenda AC500 execCommand formexeCommand stack-based overflow
A vulnerability classified as critical was found in Tenda AC500 2.0.1.91307. Affected by this vulnerability is the function formexeCommand of the file /goform/execCommand. The manipulation of the argument cmdinput leads to stack-based buffer overflow. The attack can be launched remotely. The...
CVE-2024-3906
A vulnerability was found in Tenda AC500 2.0.1.91307. It has been declared as critical. This vulnerability affects the function formQuickIndex of the file /goform/QuickIndex. The manipulation of the argument PPPOEPassword leads to stack-based buffer overflow. The attack can be initiated remotely...
CVE-2024-3905
A vulnerability was found in Tenda AC500 2.0.1.91307. It has been classified as critical. This affects the function R7WebsSecurityHandler of the file /goform/execCommand. The manipulation of the argument password leads to stack-based buffer overflow. It is possible to initiate the attack remotely...
CVE-2024-3907 Tenda AC500 setcfm formSetCfm stack-based overflow
A vulnerability was found in Tenda AC500 2.0.1.91307. It has been rated as critical. This issue affects the function formSetCfm of the file /goform/setcfm. The manipulation of the argument funcpara1 leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been...
CVE-2024-3907 Tenda AC500 setcfm formSetCfm stack-based overflow
A vulnerability was found in Tenda AC500 2.0.1.91307. It has been rated as critical. This issue affects the function formSetCfm of the file /goform/setcfm. The manipulation of the argument funcpara1 leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been...
CVE-2024-3906
CVE-2024-3906 affects Tenda AC500 (version 2.0.1.9(1307)) via the formQuickIndex function in /goform/QuickIndex. The root cause is a stack-based buffer overflow triggered when the PPPOEPassword parameter is manipulated, enabling remote exploitation. Publicized exploit details indicate in-the-wild...
CVE-2024-3906 Tenda AC500 QuickIndex formQuickIndex stack-based overflow
A vulnerability was found in Tenda AC500 2.0.1.91307. It has been declared as critical. This vulnerability affects the function formQuickIndex of the file /goform/QuickIndex. The manipulation of the argument PPPOEPassword leads to stack-based buffer overflow. The attack can be initiated remotely...
CVE-2024-3906 Tenda AC500 QuickIndex formQuickIndex stack-based overflow
A vulnerability was found in Tenda AC500 2.0.1.91307. It has been declared as critical. This vulnerability affects the function formQuickIndex of the file /goform/QuickIndex. The manipulation of the argument PPPOEPassword leads to stack-based buffer overflow. The attack can be initiated remotely...
CVE-2024-3905
CVE-2024-3905 affects Tenda AC500 2.0.1.9(1307). The flaw is in the R7WebsSecurityHandler function of the /goform/execCommand file, where manipulating the password argument causes a stack-based buffer overflow. It is exploitable remotely, and public exploits have been disclosed. Mitigations docum...
CVE-2024-3905 Tenda AC500 execCommand R7WebsSecurityHandler stack-based overflow
A vulnerability was found in Tenda AC500 2.0.1.91307. It has been classified as critical. This affects the function R7WebsSecurityHandler of the file /goform/execCommand. The manipulation of the argument password leads to stack-based buffer overflow. It is possible to initiate the attack remotely...
CVE-2024-3882
A vulnerability was found in Tenda W30E 1.0.1.25633. It has been classified as critical. Affected is the function fromRouteStatic of the file /goform/fromRouteStatic. The manipulation of the argument page leads to stack-based buffer overflow. It is possible to launch the attack remotely. The...
CVE-2024-3882 Tenda W30E fromRouteStatic stack-based overflow
A vulnerability was found in Tenda W30E 1.0.1.25633. It has been classified as critical. Affected is the function fromRouteStatic of the file /goform/fromRouteStatic. The manipulation of the argument page leads to stack-based buffer overflow. It is possible to launch the attack remotely. The...
CVE-2024-3881 Tenda W30E frmL7ProtForm frmL7PlotForm stack-based overflow
A vulnerability was found in Tenda W30E 1.0.1.25633 and classified as critical. This issue affects the function frmL7PlotForm of the file /goform/frmL7ProtForm. The manipulation of the argument page leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been...
CVE-2024-3881
Summary: CVE-2024-3881 affects Tenda W30E 1.0.1.25(633). A stack-based buffer overflow exists in the frmL7PlotForm function of /goform/frmL7ProtForm caused by improper handling of the page parameter. This can be exploited remotely and an exploit has been disclosed publicly. Impact: Confidentialit...
CVE-2024-3881 Tenda W30E frmL7ProtForm frmL7PlotForm stack-based overflow
A vulnerability was found in Tenda W30E 1.0.1.25633 and classified as critical. This issue affects the function frmL7PlotForm of the file /goform/frmL7ProtForm. The manipulation of the argument page leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been...