Lucene search
K

160 matches found

OSV
OSV
added 2025/11/13 5:15 p.m.6 views

CVE-2025-60694

A stack-based buffer overflow exists in the validatestaticroute function of the httpd binary on Linksys E1200 v2 routers Firmware E1200v2.0.11.001us.tar.gz. The function improperly concatenates user-supplied CGI parameters routeipaddr03, routenetmask03, routegateway03 into fixed-size buffers v6,...

7.5CVSS6.6AI score0.01149EPSS
Exploits1References3
NVD
NVD
added 2025/11/13 5:15 p.m.5 views

CVE-2025-60694

A stack-based buffer overflow exists in the validatestaticroute function of the httpd binary on Linksys E1200 v2 routers Firmware E1200v2.0.11.001us.tar.gz. The function improperly concatenates user-supplied CGI parameters routeipaddr03, routenetmask03, routegateway03 into fixed-size buffers v6,...

7.5CVSS0.01149EPSS
Exploits1References2
CVE
CVE
added 2025/11/13 12:0 a.m.22 views

CVE-2025-60694

CVE-2025-60694 affects Linksys E1200 v2 routers running firmware 2.0.11.001_us. A stack-based buffer overflow occurs in httpd's validate_static_route function, where CGI params route_ipaddr_0~3, route_netmask_0~3, and route_gateway_0~3 are concatenated into fixed-size buffers (v6, v10, v14) witho...

7.5CVSS7.8AI score0.01149EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2025/11/13 12:0 a.m.9 views

CVE-2025-60694

A stack-based buffer overflow exists in the validatestaticroute function of the httpd binary on Linksys E1200 v2 routers Firmware E1200v2.0.11.001us.tar.gz. The function improperly concatenates user-supplied CGI parameters routeipaddr03, routenetmask03, routegateway03 into fixed-size buffers v6,...

0.01149EPSS
Exploits1References2
CNVD
CNVD
added 2025/10/13 12:0 a.m.1 views

Tenda AC23 sscanf function buffer overflow vulnerability

Tenda AC23 is a dual-band wireless router from Tenda that supports 802.11acWave2 technology with dual-band concurrent transmission rates up to 2033Mbps, including up to 1733Mbps in the 5GHz band, which is suitable for high-bandwidth applications such as 4K video and online live streaming. Tenda...

9CVSS8.3AI score0.00742EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/10/08 7:21 a.m.4 views

CVE-2025-11356

A vulnerability was found in Tenda AC23 up to 16.03.07.52. Affected by this issue is the function sscanf of the file /goform/SetStaticRouteCfg. The manipulation of the argument list results in buffer overflow. It is possible to launch the attack remotely. The exploit has been made public and coul...

9CVSS7.4AI score0.00742EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 9:30 a.m.5 views

EUVD-2025-32699

A vulnerability was found in Tenda AC23 up to 16.03.07.52. Affected by this issue is the function sscanf of the file /goform/SetStaticRouteCfg. The manipulation of the argument list results in buffer overflow. It is possible to launch the attack remotely. The exploit has been made public and coul...

9CVSS6.8AI score0.00742EPSS
Exploits1References6
CVE
CVE
added 2025/10/07 7:2 a.m.15 views

CVE-2025-11356

CVE-2025-11356 affects Tenda AC23 (pre-16.03.07.52). The vulnerability is in sscanf within /goform/SetStaticRouteCfg, where input length validation allows a buffer overflow, enabling remote exploitation. Public exploits exist. Remedies include upgrading to a version newer than 16.03.07.52 (per PT...

9CVSS8.7AI score0.00742EPSS
Exploits1References5Affected Software1
Positive Technologies
Positive Technologies
added 2025/10/07 12:0 a.m.5 views

PT-2025-40968

Name of the Vulnerable Software and Affected Versions Tenda AC23 versions prior to 16.03.07.52 Description A flaw exists in the sscanf function within the /goform/SetStaticRouteCfg file. Manipulation of the argument list can lead to a buffer overflow, potentially allowing for remote attacks. The...

9CVSS8.8AI score0.00742EPSS
Exploits1References12
CNNVD
CNNVD
added 2025/10/07 12:0 a.m.4 views

Tenda AC23 安全漏洞

Tenda AC23 is a dual-band wireless router from Tenda that supports 802.11acWave2 technology with dual-band concurrent transmission rates up to 2033Mbps, including up to 1733Mbps in the 5GHz band, which is suitable for high-bandwidth applications such as 4K video and online live streaming. Tenda...

9CVSS8.2AI score0.00742EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-31447

Malicious code in bioql PyPI...

9CVSS8.8AI score0.00678EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2025-27378

Malicious code in bioql PyPI...

7.5CVSS6.5AI score0.00456EPSS
Exploits1References1
OSV
OSV
added 2025/09/28 2:15 a.m.4 views

CVE-2025-11091

A security flaw has been discovered in Tenda AC21 up to 16.03.08.16. Affected by this vulnerability is the function sscanf of the file /goform/SetStaticRouteCfg. The manipulation of the argument list results in buffer overflow. The attack can be launched remotely. The exploit has been released to...

8.7CVSS6.2AI score0.00678EPSS
Exploits1References5
NVD
NVD
added 2025/09/28 2:15 a.m.8 views

CVE-2025-11091

A security flaw has been discovered in Tenda AC21 up to 16.03.08.16. Affected by this vulnerability is the function sscanf of the file /goform/SetStaticRouteCfg. The manipulation of the argument list results in buffer overflow. The attack can be launched remotely. The exploit has been released to...

9CVSS0.00678EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/09/28 1:32 a.m.5 views

CVE-2025-11091 Tenda AC21 SetStaticRouteCfg sscanf buffer overflow

A security flaw has been discovered in Tenda AC21 up to 16.03.08.16. Affected by this vulnerability is the function sscanf of the file /goform/SetStaticRouteCfg. The manipulation of the argument list results in buffer overflow. The attack can be launched remotely. The exploit has been released to...

9CVSS7AI score0.00678EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/09/28 12:0 a.m.7 views

Tenda AC21 安全漏洞

Tenda AC21 is a wireless router from Tenda China. A security vulnerability exists in Tenda AC21 16.03.08.16 and earlier versions, which stems from an incorrect manipulation of the parameter list in the file /goform/SetStaticRouteCfg, which could result in a buffer overflow...

9CVSS9AI score0.00678EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2025/09/23 2:37 a.m.5 views

DHCP: DHCP routing options can manipulate interface-based VPN traffic

DHCP can add routes to a client’s routing table via the classless static route option 121. VPN-based security solutions that rely on routes to redirect traffic can be forced to leak traffic over the physical interface. An attacker on the same local network can read, disrupt, or possibly modify...

7.6CVSS7.3AI score0.04063EPSS
Exploits1References24
RedhatCVE
RedhatCVE
added 2025/09/11 12:16 a.m.17 views

CVE-2025-57072

Tenda G3 v3.0brV15.11.0.17 was discovered to contain a stack overflow in the staticRouteGateway parameter in the formSetStaticRoute function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

7.5CVSS7.6AI score0.00456EPSS
Exploits1References1
CNVD
CNVD
added 2025/09/11 12:0 a.m.7 views

Tenda G3 formSetStaticRoute function stack buffer overflow vulnerability

Tenda G3 is a Qos Vpn router from Tenda China. A stack buffer overflow vulnerability exists in the Tenda G3 formSetStaticRoute function, which can be exploited by an attacker to cause a denial of service DoS via a specially crafted request...

7.5CVSS7.3AI score0.00456EPSS
Exploits1References1
OSV
OSV
added 2025/09/09 5:16 p.m.5 views

CVE-2025-57072

Tenda G3 v3.0brV15.11.0.17 was discovered to contain a stack overflow in the staticRouteGateway parameter in the formSetStaticRoute function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

7.5CVSS5.9AI score0.00456EPSS
Exploits1References1
Rows per page
Query Builder