20 matches found
CVE-2023-40915
Tenda AX3 v16.03.12.11 has a stack buffer overflow vulnerability detected at function formfastsettingwifiset. This vulnerability allows attackers to cause a Denial of Service DoS via the ssid parameter...
EUVD-2022-29074
Malicious code in bioql PyPI...
EUVD-2023-45454
Malicious code in bioql PyPI...
EUVD-2022-29060
Malicious code in bioql PyPI...
EUVD-2022-29058
Malicious code in bioql PyPI...
EUVD-2022-29062
Malicious code in bioql PyPI...
EUVD-2022-29067
Malicious code in bioql PyPI...
EUVD-2023-31017
Malicious code in bioql PyPI...
EUVD-2022-29069
Malicious code in bioql PyPI...
EUVD-2022-29063
Malicious code in bioql PyPI...
EUVD-2022-29073
Malicious code in bioql PyPI...
EUVD-2022-29070
Malicious code in bioql PyPI...
CVE-2023-49408
Tenda AX3 V16.03.12.11 was discovered to contain a stack overflow via the function setdevicename...
CVE-2022-24160
Tenda AX3 v16.03.12.10CN was discovered to contain a stack overflow in the function formSetDeviceName. This vulnerability allows attackers to cause a Denial of Service DoS via the devName parameter...
CVE-2022-24161
Tenda AX3 v16.03.12.10CN was discovered to contain a heap overflow in the function GetParentControlInfo. This vulnerability allows attackers to cause a Denial of Service DoS via the mac parameter...
CVE-2022-24152
Tenda AX3 v16.03.12.10CN was discovered to contain a stack overflow in the function fromSetRouteStatic. This vulnerability allows attackers to cause a Denial of Service DoS via the list parameter...
CVE-2022-24153
Tenda AX3 v16.03.12.10CN was discovered to contain a stack overflow in the function formAddMacfilterRule. This vulnerability allows attackers to cause a Denial of Service DoS via the devName parameter...
CVE-2022-24146
Tenda AX3 v16.03.12.10CN was discovered to contain a stack overflow in the function formSetQosBand. This vulnerability allows attackers to cause a Denial of Service DoS via the list parameter...
CVE-2022-24159
Tenda AX3 v16.03.12.10CN was discovered to contain a stack overflow in the function formSetPPTPServer. This vulnerability allows attackers to cause a Denial of Service DoS via the startIp and endIp parameters...
Command injection
Tenda AX3 v16.03.12.10CN was discovered to contain a command injection vulnerability in the function formSetSafeWanWebMan. This vulnerability allows attackers to execute arbitrary commands via the remoteIp parameter...