Lucene search
+L

160 matches found

Cvelist
Cvelist
added 2025/09/09 12:0 a.m.11 views

CVE-2025-57072

Tenda G3 v3.0brV15.11.0.17 was discovered to contain a stack overflow in the staticRouteGateway parameter in the formSetStaticRoute function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

0.00456EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/09/09 12:0 a.m.8 views

PT-2025-36899

Name of the Vulnerable Software and Affected Versions: Tenda G3 version 3.0br V15.11.0.17 Description: The Tenda G3 router firmware contains a stack overflow in the staticRouteGateway parameter within the formSetStaticRoute function. This flaw allows attackers to trigger a Denial of Service DoS b...

7.5CVSS6.7AI score0.00456EPSS
Exploits1References4
CVE
CVE
added 2025/09/09 12:0 a.m.22 views

CVE-2025-57072

Affected product: Tenda G3 router firmware 3.0br_V15.11.0.17. Issue: stack overflow in the staticRouteGateway parameter within formSetStaticRoute, enabling Denial of Service via a crafted request. Root cause: stack overflow in the specified function. Impact: DoS as described in multiple sources. ...

7.5CVSS7.1AI score0.00456EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2025/08/20 8:15 p.m.8 views

CVE-2025-9244

A security vulnerability has been detected in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. This vulnerability affects the function addStaticRoute of the file /goform/addStaticRoute. Such manipulation of the argument...

8.8CVSS5.6AI score0.08137EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/08/20 7:32 p.m.10 views

CVE-2025-9244 Linksys RE6250/RE6300/RE6350/RE6500/RE7000/RE9000 addStaticRoute os command injection

A security vulnerability has been detected in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. This vulnerability affects the function addStaticRoute of the file /goform/addStaticRoute. Such manipulation of the argument...

6.5CVSS7.6AI score0.08137EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/08/20 12:0 a.m.11 views

PT-2025-34152 · Linksys · Linksys Re9000 +5

Name of the Vulnerable Software and Affected Versions: Linksys RE6250 versions 1.0.013.001 through 1.2.07.001 Linksys RE6300 versions 1.0.013.001 through 1.2.07.001 Linksys RE6350 versions 1.0.013.001 through 1.2.07.001 Linksys RE6500 versions 1.0.013.001 through 1.2.07.001 Linksys RE7000 version...

6.5CVSS6.6AI score0.08137EPSS
Exploits1References9
BDU FSTEC
BDU FSTEC
added 2025/07/28 12:0 a.m.8 views

The vulnerability of the Tenda AC20 router’s microprogramming software, related to reading data outside the buffer in memory, allows a hacker to execute arbitrary code or cause a service failure.

The vulnerability of Tenda AC20 microprogramming software lies in the reading of data outside the buffer in memory when processing the parameter “list” in the file /goform/SetStaticRouteCfg. Exploitation of this vulnerability allows a remote attacker to execute arbitrary code or cause service...

9CVSS8.4AI score0.00985EPSS
Exploits1References4Affected Software1
CNVD
CNVD
added 2025/07/28 12:0 a.m.30 views

Tenda AC20 Buffer Overflow Vulnerability

Tenda AC20 is a dual-band wireless router with IPv6 protocol support, featuring a triple-core 1GHz main controller with six 6dBi external antennas and a maximum wireless transmission rate of 2033Mbps. The Tenda AC20 suffers from a buffer overflow vulnerability that originates from a flaw in the...

9CVSS8AI score0.00985EPSS
Exploits1References1
OSV
OSV
added 2025/07/25 5:15 a.m.4 views

CVE-2025-8131

A vulnerability was found in Tenda AC20 16.03.08.05. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /goform/SetStaticRouteCfg. The manipulation of the argument list leads to stack-based buffer overflow. The attack can be launched remotely...

8.7CVSS6.5AI score0.00985EPSS
Exploits1References5
OSV
OSV
added 2025/07/11 4:15 p.m.4 views

CVE-2025-52984

A NULL Pointer Dereference vulnerability in the routing protocol daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, network-based attacker to cause impact to the availability of the device. When static route points to a reject next hop and a gNMI query is...

8.2CVSS5.8AI score0.00388EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/11 3:9 p.m.8 views

CVE-2025-52984 Junos OS and Junos OS Evolved: When a static route points to a reject next-hop and a gNMI query for this route is processed, RPD crashes

A NULL Pointer Dereference vulnerability in the routing protocol daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, network-based attacker to cause impact to the availability of the device. When static route points to a reject next hop and a gNMI query is...

8.2CVSS6.4AI score0.00388EPSS
Exploits0References1
CVE
CVE
added 2025/07/11 3:9 p.m.27 views

CVE-2025-52984

CVE-2025-52984 – Juniper Junos OS / Junos OS Evolved Root cause: a NULL pointer dereference in the routing protocol daemon (rpd) when a static route points to a reject next hop and a gNMI query is processed for that route, causing rpd to crash and restart and thus impacting device availability. A...

8.2CVSS6.5AI score0.00388EPSS
Exploits0References1Affected Software2
OSV
OSV
added 2025/06/03 9:15 p.m.9 views

CVE-2025-5527

A vulnerability was found in Tenda RX3 16.03.13.11multiTDE01. It has been rated as critical. This issue affects the function savestaticroutedata of the file /goform/SetStaticRouteCfg. The manipulation of the argument list leads to stack-based buffer overflow. The attack may be initiated remotely...

8.7CVSS6.5AI score0.08139EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/06/03 12:0 a.m.8 views

Tenda RX3 安全漏洞

Tenda RX3 is a dual-band WiFi 6 home wireless router from Tenda China. It is used for home network coverage and supports high-speed wireless connection. A buffer overflow vulnerability exists in Tenda RX3 version 16.03.13.11multiTDE01, which originates from the parameter list in the file...

9CVSS8.2AI score0.08139EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2025/05/29 12:0 a.m.9 views

PT-2025-23672 · Tenda · Tenda Rx3

Name of the Vulnerable Software and Affected Versions: Tenda RX3 version 16.03.13.11 multi TDE01 Description: A critical issue affects the function save staticroute data of the file "/goform/SetStaticRouteCfg". The manipulation of the argument list leads to a stack-based buffer overflow. The atta...

9CVSS8.8AI score0.08139EPSS
Exploits1References12
RedhatCVE
RedhatCVE
added 2025/05/23 12:28 a.m.19 views

CVE-2022-48130

Tenda W20E v15.11.0.6 was discovered to contain multiple stack overflows in the function formSetStaticRoute via the parameters staticRouteNet, staticRouteMask, staticRouteGateway, staticRouteWAN...

9.8CVSS7.4AI score0.00928EPSS
Exploits1
BDU FSTEC
BDU FSTEC
added 2025/05/23 12:0 a.m.8 views

The vulnerability of the /goform/SetStaticRouteCfg component in the Tenda TX3 router software, which involves copying buffers without checking the size of the input data, allows an attacker to compromise the accessibility of protected information.

The vulnerability of the /goform/SetStaticRouteCfg component in the Tenda TX3 router software lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to compromise the accessibility of protected information...

6.8CVSS6.6AI score0.00786EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/04/19 12:0 a.m.8 views

The vulnerability of the formSetStaticRoute() function in the Tenda W20E wireless Wi-Fi router software allows a hacker to execute arbitrary code or cause a service failure.

The vulnerability of the formSetStaticRoute function in the Tenda W20E wireless Wi-Fi router software lies in the reading of data beyond the buffer in memory during the processing of parameters such as staticRouteNet, staticRouteMask, staticRouteGateway, and staticRouteWAN. Exploiting this...

10CVSS8.5AI score0.00928EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2025/03/04 2:15 a.m.3 views

CVE-2025-1896

A vulnerability classified as critical was found in Tenda TX3 16.03.13.11multi. This vulnerability affects unknown code of the file /goform/SetStaticRouteCfg. The manipulation of the argument list leads to buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to th...

7.5CVSS7.1AI score
Exploits0References5
OSV
OSV
added 2025/01/27 5:15 p.m.4 views

CVE-2024-48417

Edimax AC1200 Wi-Fi 5 Dual-Band Router BR-6476AC 1.06 is vulnerable to Cross Site Scripting XSS in : /bin/goahead via /goform/setStaticRoute, /goform/fromSetFilterUrlFilter, and /goform/fromSetFilterClientFilter...

5.2CVSS5.8AI score0.0028EPSS
Exploits1References2
Rows per page
Query Builder