214 matches found
D-Link DIR-818LW 安全漏洞
The D-Link DIR-818LW is a dual-band Gigabit cloud router that supports wireless standards such as IEEE 802.11ac and IEEE 802.11n, with a wireless transfer rate of up to 433Mbps, and also provides one USB 2.0 port and four Gigabit wired ports. The D-Link DIR-818LW suffers from a command injection...
PT-2025-29398 · D Link · Dir-818Lw
Name of the Vulnerable Software and Affected Versions: D-Link DIR-818LW versions up to 20191215 Description: A critical issue exists in D-Link DIR-818LW. The vulnerability is located within the System Time Page component. Manipulation of the NTP Server argument can lead to os command injection,...
CVE-2025-6887
A vulnerability was found in Tenda AC5 15.03.06.47 and classified as critical. Affected by this issue is some unknown functionality of the file /goform/SetSysTimeCfg. The manipulation of the argument time/timeZone leads to stack-based buffer overflow. The attack may be launched remotely. The...
Tenda AC8 安全漏洞
Tenda AC8 is a wireless router from Tenda, a Chinese company. The Tenda AC8 suffers from a buffer overflow vulnerability, which originates from the parameter timeType in the file /goform/SetSysTimeCfg that fails to properly validate the length of the input data, which can be exploited by an...
Keiyo System PC Time Tracer 安全漏洞
Keiyo System PC Time Tracer is a time tracking software for any workflow from Keiyo System, Japan. A security vulnerability exists in Keiyo System PC Time Tracer versions prior to 5.2, which stems from improper default permissions that could cause a locally authenticated user to execute arbitrary...
CVE-2022-42160
D-Link COVR 1200,1202,1203 v1.08 was discovered to contain a command injection vulnerability via the systemtimetimezone parameter at function SetNTPServerSettings...
CVE-2021-46873
WireGuard, such as WireGuard 0.5.3 on Windows, does not fully account for the possibility that an adversary might be able to set a victim's system time to a future value, e.g., because unauthenticated NTP is used. This can lead to an outcome in which one static private key becomes permanently...
CVE-2019-15615
A wrong check for the system time in the Android App 3.9.0 causes a bypass of the lock protection when changing the time of the system to the past...
CVE-2024-4126
A vulnerability was found in Tenda W15E 15.11.0.14 and classified as critical. This issue affects the function formSetSysTime of the file /goform/SetSysTimeCfg. The manipulation of the argument manualTime leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has...
The vulnerability of the fromSetSysTime() function (/goform/SetSysTimeCfg) in the Tenda AC10 router’s microprogramming software allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the fromSetSysTime function /goform/SetSysTimeCfg in the Tenda AC10 router’s microprogramming system is related to the operation where the output goes beyond the buffer in memory when processing the timeZone parameter. Exploiting this vulnerability can allow an attacker to...
The vulnerability of the fromSetSysTime() function (/goform/SetSysTimeCfg) in the Tenda AC15 router’s microprogramming software allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the fromSetSysTime function /goform/SetSysTimeCfg in the Tenda AC15 router’s microprogramming software lies in the fact that the operation exits the buffer boundaries in memory when processing the time parameter. Exploiting this vulnerability could allow an attacker to...
CVE-2024-2855
A vulnerability classified as critical was found in Tenda AC15 15.03.05.18/15.03.05.19/15.03.20. Affected by this vulnerability is the function fromSetSysTime of the file /goform/SetSysTimeCfg. The manipulation of the argument time leads to stack-based buffer overflow. The attack can be launched...
Tenda AC10 安全漏洞
Tenda AC10 is a wireless router from Tenda, China. A security vulnerability exists in Tenda AC10 version 16.03.10.13, which is caused by a stack-based buffer overflow in the timeZone parameter of the fromSetSysTime method on the /goform/SetSysTimeCfg page...
PT-2024-2392 · Tenda · Tenda Ac10
Name of the Vulnerable Software and Affected Versions: Tenda AC10 versions 16.03.10.13 through 16.03.10.20 Description: The issue is related to the function fromSetSysTime in the /goform/SetSysTimeCfg file, which is vulnerable to a stack-based buffer overflow when handling the timeZone parameter...
TRENDnet TEW-824DRU Command Injection Vulnerability
The TRENDnet TEW-824DRU is a dual-band wireless router from Trendnet. A command injection vulnerability exists in the TRENDnet TEW-824DRU version 1.04b01, which stems from the system.ntp.server in the sub420AE0 function being susceptible to a command injection attack...
CVE-2023-42559
Improper exception management vulnerability in Knox Guard prior to SMR Dec-2023 Release 1 allows Knox Guard lock bypass via changing system time...
CVE-2023-42559
Improper exception management vulnerability in Knox Guard prior to SMR Dec-2023 Release 1 allows Knox Guard lock bypass via changing system time...
Input validation
Improper exception management vulnerability in Knox Guard prior to SMR Dec-2023 Release 1 allows Knox Guard lock bypass via changing system time...
CVE-2023-42559
CVE-2023-42559 affects Samsung Knox Guard on Samsung mobile devices. The root cause is improper exception management that enables a lock bypass by changing the system time, prior to SMR Dec-2023 Release 1. Impact is primarily confidentiality (high) with low integrity, and no availability impact. ...
Tenda AC7 缓冲区错误漏洞
The Tenda AC7 is a dual-band wireless router with a strong signal and stable performance for large, multi-bedroom users. The Tenda AC7 suffers from a stack buffer overflow vulnerability that originates from the timeZone parameter of /goform/SetSysTimeCfg failing to correctly validate the length a...