CVE-2026-6120 Tenda F451 httpd DhcpListClient fromDhcpListClient stack-based overflow

A vulnerability was detected in Tenda F451 1.0.0.7. Affected is the function fromDhcpListClient of the file /goform/DhcpListClient of the component httpd. The manipulation of the argument page results in stack-based buffer overflow. The attack can be launched remotely. The exploit is now public a...

CVE-2026-6120

CVE-2026-6120 affects Tenda F451 1.0.0.7. The httpd component’s /goform/DhcpListClient, function fromDhcpListClient, is vulnerable to a stack-based buffer overflow caused by manipulation of the page argument. The issue is exploitable remotely, and a public exploit is available. Evidence originate...

PT-2026-32154

A flaw has been found in Tenda F451 1.0.0.7. Affected by this vulnerability is the function WrlclientSet of the file /goform/WrlclientSet of the component httpd. This manipulation of the argument GO causes stack-based buffer overflow. The attack may be initiated remotely. The exploit has been...

PT-2026-32192

Name of the Vulnerable Software and Affected Versions Tenda F451 version 1.0.0.7 cn svn7958 Description A security flaw exists in the fromqossetting function of the /goform/qossetting file in Tenda F451 version 1.0.0.7 cn svn7958. Manipulation of the qos argument can lead to a stack-based buffer...

Echo Mirage 缓冲区错误漏洞

Echo Mirage is a software tool developed by abhi1299, used for audio signal processing and echo effect simulation. Version 3.1 of Echo Mirage contains a buffer error vulnerability, which stems from insufficient input validation of the Rules operation field. This vulnerability may lead to a stack...

PT-2026-32194

Name of the Vulnerable Software and Affected Versions Tenda F451 version 1.0.0.7 cn svn7958 Description A stack-based buffer overflow can be triggered remotely via the frmL7ImForm function within the '/goform/L7Im' file. This issue occurs through the manipulation of the page argument...

Tenda F451 安全漏洞

The Tenda F451 is a wireless router produced by the Chinese company Tenda. Version 1.0.0.7 of the Tenda F451 contains a security vulnerability. This vulnerability stems from the improper handling of the parameter “GO” in the WrlclientSet function of the httpd component, potentially leading to a...

PT-2026-32167

Echo Mirage 3.1 contains a stack buffer overflow vulnerability that allows local attackers to crash the application or execute arbitrary code by supplying an oversized string in the Rules action field. Attackers can create a malicious text file with a crafted payload exceeding buffer boundaries a...

Tenda F451 安全漏洞

The Tenda F451 is a wireless router produced by the Chinese company Tenda. The version Tenda F451 1.0.0.7cnsvn7958 contains a security vulnerability. This vulnerability arises from incorrect handling of parameters in the file/goform/qossetting, which may lead to a stack buffer overflow...

PT-2026-32191

Name of the Vulnerable Software and Affected Versions Tenda F451 version 1.0.0.7 cn svn7958 Description A remote stack-based buffer overflow exists in the fromSafeUrlFilter function within the /goform/SafeUrlFilter file. This issue occurs when the page argument is manipulated, allowing an attacke...

PT-2026-32156

A vulnerability was found in Tenda F451 1.0.0.7. This affects the function fromAddressNat of the file /goform/addressNat of the component httpd. Performing a manipulation of the argument entrys results in stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has...

Tenda F451 安全漏洞

The Tenda F451 is a wireless router produced by the Chinese company Tenda. The version Tenda F451 1.0.0.7cnsvn7958 contains a security vulnerability. This vulnerability stems from incorrect handling of parameters in the file/goform/SafeUrlFilter, which may lead to a stack buffer overflow...

Tenda F451 安全漏洞

The Tenda F451 is a wireless router produced by the Chinese company Tenda. Version 1.0.0.7 of the Tenda F451 contains a security vulnerability. This vulnerability stems from the improper handling of the parameter entrys in the fromAddressNat function within the httpd component, potentially leadin...

OESA-2026-1904 ncurses security update

The ncurses new curses library is a free software emulation of curses in System V Release 4.0 SVr4, and more. It uses terminfo format, supports pads and color and multiple highlights and forms characters and function-key mapping, and has all the other SVr4-curses enhancements over BSD curses. SVr...

OESA-2026-1902 python3 security update

Python combines remarkable power with very clear syntax. It has modules, classes, exceptions, very high level dynamic data types, and dynamic typing. There are interfaces to many system calls and libraries, as well as to various windowing systems. New built-in modules are easily written in C or C...

OESA-2026-1899 python3 security update

Python combines remarkable power with very clear syntax. It has modules, classes, exceptions, very high level dynamic data types, and dynamic typing. There are interfaces to many system calls and libraries, as well as to various windowing systems. New built-in modules are easily written in C or C...

OESA-2026-1860 mxml security update

Mini-XML is a small XML parsing library that you can use to read XML and XML-like data files in your application without requiring large non-standard libraries. Security Fixes: A vulnerability was determined in mxml up to 4.0.4. This issue affects the function indexsort of the file mxml-index.c o...

EUVD-2026-21641

ChargePoint Home Flex OCPP getpreq Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of ChargePoint Home Flex EV chargers. Authentication is not required to exploit this...

CVE-2026-6069

NASM’s disasm function contains a stack based buffer overflow when formatting disassembly output, allowing an attacker triggered out-of-bounds write when slen exceeds the buffer capacity...

CVE-2026-6069 CVE-2026-6069

NASM’s disasm function contains a stack based buffer overflow when formatting disassembly output, allowing an attacker triggered out-of-bounds write when slen exceeds the buffer capacity...