Lucene search
K

34194 matches found

Vulnrichment
Vulnrichment
added 2026/03/12 1:2 a.m.3 views

CVE-2026-3970 Tenda i3 wifiSSIDget formwrlSSIDget stack-based overflow

A flaw has been found in Tenda i3 1.0.0.62204. Affected is the function formwrlSSIDget of the file /goform/wifiSSIDget. Executing a manipulation of the argument index can lead to stack-based buffer overflow. The attack may be launched remotely. The exploit has been published and may be used...

9CVSS6.4AI score0.00619EPSS
Exploits1References5
CVE
CVE
added 2026/03/12 1:2 a.m.13 views

CVE-2026-3970

CVE-2026-3970 affects Tenda i3 1.0.0.6(2204). The vulnerability is in the function formwrlSSIDget of the file /goform/wifiSSIDget, where manipulation of the argument index can trigger a stack-based buffer overflow . It can be exploited remotely, and a working exploit has been published. The provi...

9CVSS6.4AI score0.00619EPSS
Exploits1References5Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/03/12 1:2 a.m.3 views

CVE-2026-3970

A flaw has been found in Tenda i3 1.0.0.62204. Affected is the function formwrlSSIDget of the file /goform/wifiSSIDget. Executing a manipulation of the argument index can lead to stack-based buffer overflow. The attack may be launched remotely. The exploit has been published and may be used...

9CVSS6.4AI score0.00619EPSS
Exploits1References5Affected Software1
ICS
ICS
added 2026/03/12 12:30 a.m.8 views

ABB AC500 V3 Stack Buffer Overflow in Cryptographic Message Syntax

SUMMARY ABB became aware of vulnerability in the products versions listed as affected in the advisory. An update is available that resolves publicly reported vulnerability. An attacker who successfully exploited these vulnerabilities could cause a crash, denial-of-service DoS, or potentially...

9.8CVSS6.7AI score0.47621EPSS
Exploits7References11
Positive Technologies
Positive Technologies
added 2026/03/12 12:0 a.m.4 views

PT-2026-24914

A vulnerability was identified in Tenda W3 1.0.0.32204. This vulnerability affects the function formexeCommand of the file /goform/exeCommand of the component HTTP Handler. Such manipulation of the argument cmdinput leads to stack-based buffer overflow. The attack may be performed from remote. Th...

9CVSS6.4AI score0.00632EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2026/03/12 12:0 a.m.3 views

PT-2026-24906

A vulnerability was found in Tenda W3 1.0.0.32204. Affected by this issue is the function formSetCfm of the file /goform/setcfm of the component HTTP Handler. The manipulation of the argument funcpara1 results in stack-based buffer overflow. The attack can only be performed from the local network...

8.8CVSS6.3AI score0.00706EPSS
Exploits1References6
CNNVD
CNNVD
added 2026/03/12 12:0 a.m.9 views

D-Link DIR-513 安全漏洞

The D-Link DIR-513 is a wireless router product from D-Link Corporation. Version 1.10 of the D-Link DIR-513 contains a security vulnerability. This vulnerability stems from incorrect handling of parameters in the file/goform/formEasySetupWizard3, specifically the parameter “wanconnected”. This...

9CVSS7.7AI score0.00715EPSS
Exploits1References5
CNNVD
CNNVD
added 2026/03/12 12:0 a.m.6 views

flatted 安全漏洞

Flatted is a lightweight and fast cycle-based JSON parser developed by Andrea Giammarchi. Versions of Flatted prior to 3.4.0 contained a security vulnerability. This vulnerability stemmed from the recursive depth of the parse function when handling specially crafted payloads, which could lead to ...

7.5CVSS7.2AI score0.00777EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2026/03/12 12:0 a.m.3 views

PT-2026-25037

Name of the Vulnerable Software and Affected Versions flatted versions prior to 3.4.0 Description flatted is a circular JSON parser. The parse function uses a recursive revive phase to resolve circular references in deserialized JSON. When provided with a crafted payload containing deeply nested ...

7.5CVSS7.7AI score0.00777EPSS
Exploits1References146
Positive Technologies
Positive Technologies
added 2026/03/12 12:0 a.m.4 views

PT-2026-24902

A flaw has been found in Tenda i3 1.0.0.62204. Affected is the function formwrlSSIDget of the file /goform/wifiSSIDget. Executing a manipulation of the argument index can lead to stack-based buffer overflow. The attack may be launched remotely. The exploit has been published and may be used...

9CVSS6.4AI score0.00619EPSS
Exploits1References6
Cvelist
Cvelist
added 2026/03/12 12:0 a.m.34 views

CVE-2026-25823

HMS Networks Ewon Flexy with firmware before 15.0s4, Cosy+ with firmware 22.xx before 22.1s6, and Cosy+ with firmware 23.xx before 23.0s3 have a stack buffer overflow that leads to a Denial of Service, which can also be exploited to achieve Unauthenticated Remote Code Execution...

0.00725EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/03/12 12:0 a.m.6 views

Tenda i3 安全漏洞

The Tenda i3 is a wireless access point device produced by the Chinese company Tenda. Version 1.0.0.62204 of the Tenda i3 contains a security vulnerability. This vulnerability stems from incorrect handling of the parameter “index/GO” in the file/goform/wifiSSIDset, which may lead to a stack buffe...

9CVSS7.7AI score0.00635EPSS
Exploits1References7
CVE
CVE
added 2026/03/12 12:0 a.m.8 views

CVE-2026-25823

Affected products: HMS Networks Ewon Flexy (firmware before 15.0s4) and Cosy+ (firmware before 22.1s6 and before 23.0s3). Issue: stack buffer overflow in the affected WEB/firmware stack leads to Denial of Service, with potential for Unauthenticated Remote Code Execution. Root cause: insufficient ...

9.8CVSS6.1AI score0.00725EPSS
Exploits0References2
CVE
CVE
added 2026/03/12 12:0 a.m.13 views

CVE-2025-70245

CVE-2025-70245 affects D-Link DIR-513 v1.10, vulnerable via the curTime parameter to goform/formSetWizardSelectMode, causing a stack-based buffer overflow. The connected sources consistently describe this as a stack buffer overflow in the specified device/firmware context; no explicit exploit det...

9.8CVSS6.1AI score0.00595EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2026/03/12 12:0 a.m.25 views

CVE-2025-70245

Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSetWizardSelectMode...

0.00595EPSS
Exploits1References3
CNNVD
CNNVD
added 2026/03/12 12:0 a.m.4 views

Tenda W3 安全漏洞

Tenda W3 is a wireless access point device from the Chinese company Tenda. Version 1.0.0.32204 of Tenda W3 contains a security vulnerability. This vulnerability stems from incorrect handling of parameters in the file/goform/setcfm, specifically parameter funcpara1, which may lead to a stack buffe...

8.8CVSS7.7AI score0.00706EPSS
Exploits1References5
CNNVD
CNNVD
added 2026/03/12 12:0 a.m.6 views

Tenda W3 安全漏洞

Tenda W3 is a wireless access point device from the Chinese company Tenda. Version 1.0.0.32204 of Tenda W3 contains a security vulnerability. This vulnerability stems from incorrect handling of parameters in the file/goform/WifiMacFilterGet, specifically the wlradio parameter, which may lead to a...

9CVSS7.7AI score0.00655EPSS
Exploits1References5
CNNVD
CNNVD
added 2026/03/12 12:0 a.m.7 views

Tenda W3 安全漏洞

Tenda W3 is a wireless access point device from the Chinese company Tenda. Version 1.0.0.32204 of Tenda W3 contains a security vulnerability. This vulnerability stems from incorrect handling of parameter index in the component POST Parameter Handler, specifically in the file/goform/wifiSSIDget...

9CVSS7.7AI score0.00619EPSS
Exploits1References5
CNNVD
CNNVD
added 2026/03/12 12:0 a.m.4 views

GPAC 安全漏洞

GPAC is an open-source multimedia framework developed by GPAC. The GPAC 26.03-DEV version contains a security vulnerability, which stems from a stack buffer overflow in the txtinprocesstexml function within the TeXML File Parser component...

5.3CVSS6.2AI score0.00127EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2026/03/12 12:0 a.m.3 views

PT-2026-24903

A vulnerability has been found in Tenda i3 1.0.0.62204. Affected by this vulnerability is the function formwrlSSIDset of the file /goform/wifiSSIDset. The manipulation of the argument index/GO leads to stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has bee...

9CVSS6.2AI score0.00635EPSS
Exploits1References8
Rows per page
Query Builder