34021 matches found
CVE-2026-36796
CVE-2026-36796 affects Shenzhen Tenda Technology Co., Ltd Tenda G0 firmware v15.11.0.5. The issue is a stack overflow in the picCropName parameter of the formCropAndSetWewifiPic function, enabling a remote attacker to trigger Denial of Service via a crafted HTTP request. CVSS v3.1 metrics indicat...
CVE-2026-36793
CVE-2026-36793 affects Shenzhen Tenda Technology Co., Ltd. Tenda W3 Wireless Router v1.0.0.3(2204). The vulnerability is due to multiple stack overflows in the formwrlSSIDset function triggered via the mit_ssid and mis_ssid_index parameters, allowing an attacker to cause a Denial of Service with ...
CVE-2026-36794
CVE-2026-36794 affects Shenzhen Tenda Technology Co. Ltd. Tenda W3 Wireless Router v1.0.0.3(2204). The issue is multiple stack overflows in the R7WebsSecurityHandler function triggered via username and password parameters, leading to Denial of Service (DoS) through a crafted HTTP request. Connect...
CVE-2026-36791
The CVE-2026-36791 entry affects Shenzhen Tenda Technology Co., Ltd. Tenda O3v3 v1.0.0.5, where a stack overflow in the save_list_data parameter of the formSetCfm function could allow a crafted HTTP request to cause a Denial of Service. Affected component: the save_list_data handling within formS...
CVE-2026-36771
CVE-2026-36771 affects Shenzhen Tenda Technology Co. Ltd. Tenda W3 Wireless Router v1.0.0.3(2204). The vulnerability is a stack overflow in the wl_radio parameter within the formwrlSSIDset function, which can cause a Denial of Service (DoS) under crafted input. The CVSS 3.1 vector indicates NETWO...
CVE-2026-36777
CVE-2026-36777 affects Shenzhen Tenda Technology Co., Ltd. Tenda W3 Wireless Router v1.0.0.3(2204). The vulnerability is a stack overflow in the param_1 parameter of the formSetCfm function, leading to a Denial of Service when processing a crafted HTTP request. Multiple connected sources (Red Hat...
CVE-2026-36770
CVE-2026-36770 affects Shenzhen Tenda Technology Co. device: Tenda US_W3V1.0BR v1.0.0.3. The vulnerability is a stack overflow in the Go parameter of the ask_to_reboot function, leading to Denial of Service through a crafted input. CVSS v3.1 base score is 7.5 (Network attack, Low attack complexit...
CVE-2026-36778
CVE-2026-36778 affects Shenzhen Tenda Technology Co., Ltd Tenda O3 Wireless Router v1.0.0.5(4180). The advisory states a stack overflow in the username parameter of the R7WebsSecurityHandler function, enabling an attacker to cause a Denial of Service via a crafted HTTP request. The Red Hat and NV...
CVE-2026-36784
CVE-2026-36784 affects Shenzhen Tenda Technology Co., Ltd Tenda O3 Wireless Router v1.0.0.5(4180). The issue is a stack overflow in the ip parameter of the fromNetToolGet function, enabling a Denial of Service (DoS) via an HTTP request. The CVSS 3.1 vector (AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H) yi...
CVE-2026-36772
CVE-2026-36772 affects the Shenzhen Tenda Technology Co., Ltd Tenda W3 Wireless Router v1.0.0.3(2204). The vulnerability is a stack overflow in the wl_radio parameter of the formwrlSSIDget function, leading to Denial of Service. This is the reported root cause and affected component. No patch/ver...
CVE-2026-36773
Shenzhen Tenda Technology Co., Ltd Tenda W3 Wireless Router v1.0.0.3(2204) has a stack overflow in the Go parameter of the ask_to_reboot function, causing Denial of Service via crafted input. Affected component: the ask_to_reboot parameter handling. Root cause: stack overflow in Go code. Impact: ...
CVE-2026-36792
Shenzhen Tenda Technology Co., Ltd Tenda W3 Wireless Router v1.0.0.32204 was discovered to contain a stack overflow in the wlradio parameter of the formWifiRadioSet function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted HTTP request...
PT-2026-48316
Name of the Vulnerable Software and Affected Versions Spring Data Commons versions 4.0.0 through 4.0.5 Spring Data Commons versions 3.5.0 through 3.5.11 Spring Data Commons versions 3.4.0 through 3.4.14 Spring Data Commons versions 3.3.0 through 3.3.16 Spring Data Commons versions 3.2.0 through...
Tenda W3 Wireless Router 安全漏洞
The Tenda W3 is a wireless access point device produced by the Chinese company Tenda. Version 1.0.0.32204 of the Tenda W3 Wireless Router contains a security vulnerability. This vulnerability stems from multiple stack overflows in the username and password parameters within the...
CVE-2026-36778
Shenzhen Tenda Technology Co., Ltd Tenda O3 Wireless Router v1.0.0.54180 was discovered to contain a stack overflow in the username parameter of the R7WebsSecurityHandler function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted HTTP request...
PT-2026-48184
Shenzhen Tenda Technology Co., Ltd Tenda O3v3 v1.0.0.5 was discovered to contain a stack overflow in the save list data parameter of the formSetCfm function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted HTTP request...
CVE-2026-36796
Shenzhen Tenda Technology Co., Ltd Tenda G0 v15.11.0.5 was discovered to contain a stack overflow in the picCropName parameter of the formCropAndSetWewifiPic function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted HTTP request...
CVE-2026-36772
Shenzhen Tenda Technology Co., Ltd Tenda W3 Wireless Router v1.0.0.32204 was discovered to contain a stack overflow in the wlradio parameter of the formwrlSSIDget function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted input...
Adobe Reader < 26.001.21662 Multiple Vulnerabilities (APSB26-63) (macOS)
The version of Adobe Reader installed on the remote macOS host is a version prior to 26.001.21662. It is, therefore, affected by multiple vulnerabilities. - Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result...
PT-2026-48177
Shenzhen Tenda Technology Co., Ltd Tenda W3 Wireless Router v1.0.0.32204 was discovered to contain a stack overflow in the wl radio parameter of the formwrlSSIDget function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted input...