160 matches found
CVE-2025-57072
Tenda G3 v3.0brV15.11.0.17 was discovered to contain a stack overflow in the staticRouteGateway parameter in the formSetStaticRoute function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...
PT-2025-36899
Name of the Vulnerable Software and Affected Versions: Tenda G3 version 3.0br V15.11.0.17 Description: The Tenda G3 router firmware contains a stack overflow in the staticRouteGateway parameter within the formSetStaticRoute function. This flaw allows attackers to trigger a Denial of Service DoS b...
CVE-2025-57072
Affected product: Tenda G3 router firmware 3.0br_V15.11.0.17. Issue: stack overflow in the staticRouteGateway parameter within formSetStaticRoute, enabling Denial of Service via a crafted request. Root cause: stack overflow in the specified function. Impact: DoS as described in multiple sources. ...
CVE-2025-9244
A security vulnerability has been detected in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. This vulnerability affects the function addStaticRoute of the file /goform/addStaticRoute. Such manipulation of the argument...
CVE-2025-9244 Linksys RE6250/RE6300/RE6350/RE6500/RE7000/RE9000 addStaticRoute os command injection
A security vulnerability has been detected in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. This vulnerability affects the function addStaticRoute of the file /goform/addStaticRoute. Such manipulation of the argument...
PT-2025-34152 · Linksys · Linksys Re9000 +5
Name of the Vulnerable Software and Affected Versions: Linksys RE6250 versions 1.0.013.001 through 1.2.07.001 Linksys RE6300 versions 1.0.013.001 through 1.2.07.001 Linksys RE6350 versions 1.0.013.001 through 1.2.07.001 Linksys RE6500 versions 1.0.013.001 through 1.2.07.001 Linksys RE7000 version...
The vulnerability of the Tenda AC20 router’s microprogramming software, related to reading data outside the buffer in memory, allows a hacker to execute arbitrary code or cause a service failure.
The vulnerability of Tenda AC20 microprogramming software lies in the reading of data outside the buffer in memory when processing the parameter “list” in the file /goform/SetStaticRouteCfg. Exploitation of this vulnerability allows a remote attacker to execute arbitrary code or cause service...
Tenda AC20 Buffer Overflow Vulnerability
Tenda AC20 is a dual-band wireless router with IPv6 protocol support, featuring a triple-core 1GHz main controller with six 6dBi external antennas and a maximum wireless transmission rate of 2033Mbps. The Tenda AC20 suffers from a buffer overflow vulnerability that originates from a flaw in the...
CVE-2025-8131
A vulnerability was found in Tenda AC20 16.03.08.05. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /goform/SetStaticRouteCfg. The manipulation of the argument list leads to stack-based buffer overflow. The attack can be launched remotely...
CVE-2025-52984
A NULL Pointer Dereference vulnerability in the routing protocol daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, network-based attacker to cause impact to the availability of the device. When static route points to a reject next hop and a gNMI query is...
CVE-2025-52984 Junos OS and Junos OS Evolved: When a static route points to a reject next-hop and a gNMI query for this route is processed, RPD crashes
A NULL Pointer Dereference vulnerability in the routing protocol daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, network-based attacker to cause impact to the availability of the device. When static route points to a reject next hop and a gNMI query is...
CVE-2025-52984
CVE-2025-52984 – Juniper Junos OS / Junos OS Evolved Root cause: a NULL pointer dereference in the routing protocol daemon (rpd) when a static route points to a reject next hop and a gNMI query is processed for that route, causing rpd to crash and restart and thus impacting device availability. A...
CVE-2025-5527
A vulnerability was found in Tenda RX3 16.03.13.11multiTDE01. It has been rated as critical. This issue affects the function savestaticroutedata of the file /goform/SetStaticRouteCfg. The manipulation of the argument list leads to stack-based buffer overflow. The attack may be initiated remotely...
Tenda RX3 安全漏洞
Tenda RX3 is a dual-band WiFi 6 home wireless router from Tenda China. It is used for home network coverage and supports high-speed wireless connection. A buffer overflow vulnerability exists in Tenda RX3 version 16.03.13.11multiTDE01, which originates from the parameter list in the file...
PT-2025-23672 · Tenda · Tenda Rx3
Name of the Vulnerable Software and Affected Versions: Tenda RX3 version 16.03.13.11 multi TDE01 Description: A critical issue affects the function save staticroute data of the file "/goform/SetStaticRouteCfg". The manipulation of the argument list leads to a stack-based buffer overflow. The atta...
CVE-2022-48130
Tenda W20E v15.11.0.6 was discovered to contain multiple stack overflows in the function formSetStaticRoute via the parameters staticRouteNet, staticRouteMask, staticRouteGateway, staticRouteWAN...
The vulnerability of the /goform/SetStaticRouteCfg component in the Tenda TX3 router software, which involves copying buffers without checking the size of the input data, allows an attacker to compromise the accessibility of protected information.
The vulnerability of the /goform/SetStaticRouteCfg component in the Tenda TX3 router software lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to compromise the accessibility of protected information...
The vulnerability of the formSetStaticRoute() function in the Tenda W20E wireless Wi-Fi router software allows a hacker to execute arbitrary code or cause a service failure.
The vulnerability of the formSetStaticRoute function in the Tenda W20E wireless Wi-Fi router software lies in the reading of data beyond the buffer in memory during the processing of parameters such as staticRouteNet, staticRouteMask, staticRouteGateway, and staticRouteWAN. Exploiting this...
CVE-2025-1896
A vulnerability classified as critical was found in Tenda TX3 16.03.13.11multi. This vulnerability affects unknown code of the file /goform/SetStaticRouteCfg. The manipulation of the argument list leads to buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to th...
CVE-2024-48417
Edimax AC1200 Wi-Fi 5 Dual-Band Router BR-6476AC 1.06 is vulnerable to Cross Site Scripting XSS in : /bin/goahead via /goform/setStaticRoute, /goform/fromSetFilterUrlFilter, and /goform/fromSetFilterClientFilter...