Lucene search
K

214 matches found

CNNVD
CNNVD
added 2025/07/13 12:0 a.m.3 views

D-Link DIR-818LW 安全漏洞

The D-Link DIR-818LW is a dual-band Gigabit cloud router that supports wireless standards such as IEEE 802.11ac and IEEE 802.11n, with a wireless transfer rate of up to 433Mbps, and also provides one USB 2.0 port and four Gigabit wired ports. The D-Link DIR-818LW suffers from a command injection...

7.2CVSS5.3AI score0.04165EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/07/12 12:0 a.m.7 views

PT-2025-29398 · D Link · Dir-818Lw

Name of the Vulnerable Software and Affected Versions: D-Link DIR-818LW versions up to 20191215 Description: A critical issue exists in D-Link DIR-818LW. The vulnerability is located within the System Time Page component. Manipulation of the NTP Server argument can lead to os command injection,...

7.2CVSS4.7AI score0.04165EPSS
Exploits0References9
OSV
OSV
added 2025/06/30 5:15 a.m.8 views

CVE-2025-6887

A vulnerability was found in Tenda AC5 15.03.06.47 and classified as critical. Affected by this issue is some unknown functionality of the file /goform/SetSysTimeCfg. The manipulation of the argument time/timeZone leads to stack-based buffer overflow. The attack may be launched remotely. The...

8.7CVSS6.5AI score0.00788EPSS
Exploits1References7
CNNVD
CNNVD
added 2025/06/06 12:0 a.m.8 views

Tenda AC8 安全漏洞

Tenda AC8 is a wireless router from Tenda, a Chinese company. The Tenda AC8 suffers from a buffer overflow vulnerability, which originates from the parameter timeType in the file /goform/SetSysTimeCfg that fails to properly validate the length of the input data, which can be exploited by an...

9CVSS8.2AI score0.00998EPSS
Exploits1References6
CNNVD
CNNVD
added 2025/06/03 12:0 a.m.7 views

Keiyo System PC Time Tracer 安全漏洞

Keiyo System PC Time Tracer is a time tracking software for any workflow from Keiyo System, Japan. A security vulnerability exists in Keiyo System PC Time Tracer versions prior to 5.2, which stems from improper default permissions that could cause a locally authenticated user to execute arbitrary...

7.3CVSS7.6AI score0.00139EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/23 1:10 a.m.11 views

CVE-2022-42160

D-Link COVR 1200,1202,1203 v1.08 was discovered to contain a command injection vulnerability via the systemtimetimezone parameter at function SetNTPServerSettings...

8.8CVSS8AI score0.02729EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:56 p.m.6 views

CVE-2021-46873

WireGuard, such as WireGuard 0.5.3 on Windows, does not fully account for the possibility that an adversary might be able to set a victim's system time to a future value, e.g., because unauthenticated NTP is used. This can lead to an outcome in which one static private key becomes permanently...

5.3CVSS6.8AI score0.00472EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 4:37 a.m.10 views

CVE-2019-15615

A wrong check for the system time in the Android App 3.9.0 causes a bypass of the lock protection when changing the time of the system to the past...

6.1CVSS6.8AI score0.00369EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 12:12 a.m.4 views

CVE-2024-4126

A vulnerability was found in Tenda W15E 15.11.0.14 and classified as critical. This issue affects the function formSetSysTime of the file /goform/SetSysTimeCfg. The manipulation of the argument manualTime leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has...

9CVSS8.8AI score0.01757EPSS
Exploits1
BDU FSTEC
BDU FSTEC
added 2024/03/27 12:0 a.m.7 views

The vulnerability of the fromSetSysTime() function (/goform/SetSysTimeCfg) in the Tenda AC10 router’s microprogramming software allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the fromSetSysTime function /goform/SetSysTimeCfg in the Tenda AC10 router’s microprogramming system is related to the operation where the output goes beyond the buffer in memory when processing the timeZone parameter. Exploiting this vulnerability can allow an attacker to...

9CVSS7.8AI score0.01159EPSS
Exploits1References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/03/27 12:0 a.m.5 views

The vulnerability of the fromSetSysTime() function (/goform/SetSysTimeCfg) in the Tenda AC15 router’s microprogramming software allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the fromSetSysTime function /goform/SetSysTimeCfg in the Tenda AC15 router’s microprogramming software lies in the fact that the operation exits the buffer boundaries in memory when processing the time parameter. Exploiting this vulnerability could allow an attacker to...

10CVSS7.9AI score0.01298EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2024/03/24 6:15 a.m.4 views

CVE-2024-2855

A vulnerability classified as critical was found in Tenda AC15 15.03.05.18/15.03.05.19/15.03.20. Affected by this vulnerability is the function fromSetSysTime of the file /goform/SetSysTimeCfg. The manipulation of the argument time leads to stack-based buffer overflow. The attack can be launched...

9.8CVSS6.3AI score
Exploits0References3
CNNVD
CNNVD
added 2024/03/24 12:0 a.m.5 views

Tenda AC10 安全漏洞

Tenda AC10 is a wireless router from Tenda, China. A security vulnerability exists in Tenda AC10 version 16.03.10.13, which is caused by a stack-based buffer overflow in the timeZone parameter of the fromSetSysTime method on the /goform/SetSysTimeCfg page...

9.8CVSS9.1AI score0.01159EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2024/03/16 12:0 a.m.5 views

PT-2024-2392 · Tenda · Tenda Ac10

Name of the Vulnerable Software and Affected Versions: Tenda AC10 versions 16.03.10.13 through 16.03.10.20 Description: The issue is related to the function fromSetSysTime in the /goform/SetSysTimeCfg file, which is vulnerable to a stack-based buffer overflow when handling the timeZone parameter...

9.8CVSS8.9AI score0.01159EPSS
Exploits1References10
CNNVD
CNNVD
added 2024/01/26 12:0 a.m.4 views

TRENDnet TEW-824DRU Command Injection Vulnerability

The TRENDnet TEW-824DRU is a dual-band wireless router from Trendnet. A command injection vulnerability exists in the TRENDnet TEW-824DRU version 1.04b01, which stems from the system.ntp.server in the sub420AE0 function being susceptible to a command injection attack...

7.8CVSS7.5AI score0.00498EPSS
Exploits1References2
NVD
NVD
added 2023/12/05 3:15 a.m.26 views

CVE-2023-42559

Improper exception management vulnerability in Knox Guard prior to SMR Dec-2023 Release 1 allows Knox Guard lock bypass via changing system time...

5.2CVSS0.00323EPSS
Exploits0References1
OSV
OSV
added 2023/12/05 3:15 a.m.7 views

CVE-2023-42559

Improper exception management vulnerability in Knox Guard prior to SMR Dec-2023 Release 1 allows Knox Guard lock bypass via changing system time...

5.2CVSS5.8AI score0.00323EPSS
Exploits0References1
Prion
Prion
added 2023/12/05 3:15 a.m.22 views

Input validation

Improper exception management vulnerability in Knox Guard prior to SMR Dec-2023 Release 1 allows Knox Guard lock bypass via changing system time...

3.6CVSS7.1AI score0.00323EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/12/05 2:44 a.m.54 views

CVE-2023-42559

CVE-2023-42559 affects Samsung Knox Guard on Samsung mobile devices. The root cause is improper exception management that enables a lock bypass by changing the system time, prior to SMR Dec-2023 Release 1. Impact is primarily confidentiality (high) with low integrity, and no availability impact. ...

5.2CVSS5.2AI score0.00323EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2023/08/30 12:0 a.m.4 views

Tenda AC7 缓冲区错误漏洞

The Tenda AC7 is a dual-band wireless router with a strong signal and stable performance for large, multi-bedroom users. The Tenda AC7 suffers from a stack buffer overflow vulnerability that originates from the timeZone parameter of /goform/SetSysTimeCfg failing to correctly validate the length a...

9.8CVSS9.2AI score0.00701EPSS
Exploits1References2
Rows per page
Query Builder