Lucene search
+L

34 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:22 p.m.11 views

CVE-2026-7119

A vulnerability was detected in Tenda HG3 2.0. The impacted element is an unknown function of the file /boaform/formCountrystr. The manipulation of the argument countrystr results in os command injection. The attack may be performed from remote. The exploit is now public and may be used...

9CVSS7.4AI score0.03269EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/06/05 7:22 p.m.9 views

CVE-2026-7096

A security flaw has been discovered in Tenda HG3 2.0 300003070. This vulnerability affects the function formgponConf of the file /boaform/admin/formgponConf. The manipulation of the argument fmgponloid results in os command injection. It is possible to launch the attack remotely. The exploit has...

9CVSS7.3AI score0.04075EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/06/05 7:22 p.m.12 views

CVE-2026-7160

A vulnerability was determined in Tenda HG3 2.0. This vulnerability affects the function formTracert of the file /boaform/formTracert. Executing a manipulation of the argument datasize can lead to command injection. The attack may be performed from remote. The exploit has been publicly disclosed...

9CVSS7.4AI score0.03269EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/04/29 2:48 p.m.5 views

CVE-2026-7151

A vulnerability was determined in Tenda HG3 2.0. Impacted is the function formUploadConfig of the file /boaform/formIPv6Routing. This manipulation of the argument destNet causes stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been publicly disclosed an...

9CVSS8.7AI score0.00632EPSS
Exploits1References1
NVD
NVD
added 2026/04/27 10:16 p.m.9 views

CVE-2026-7160

A vulnerability was determined in Tenda HG3 2.0. This vulnerability affects the function formTracert of the file /boaform/formTracert. Executing a manipulation of the argument datasize can lead to command injection. The attack may be performed from remote. The exploit has been publicly disclosed...

9CVSS0.03269EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2026/04/27 9:30 p.m.3 views

CVE-2026-7160 Tenda HG3 formTracert command injection

A vulnerability was determined in Tenda HG3 2.0. This vulnerability affects the function formTracert of the file /boaform/formTracert. Executing a manipulation of the argument datasize can lead to command injection. The attack may be performed from remote. The exploit has been publicly disclosed...

9CVSS7.7AI score0.03269EPSS
Exploits1References5
EUVD
EUVD
added 2026/04/27 9:30 p.m.15 views

EUVD-2026-25927

A vulnerability was determined in Tenda HG3 2.0. This vulnerability affects the function formTracert of the file /boaform/formTracert. Executing a manipulation of the argument datasize can lead to command injection. The attack may be performed from remote. The exploit has been publicly disclosed...

9CVSS7.8AI score0.03269EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2026/04/27 9:30 p.m.2 views

CVE-2026-7160

A vulnerability was determined in Tenda HG3 2.0. This vulnerability affects the function formTracert of the file /boaform/formTracert. Executing a manipulation of the argument datasize can lead to command injection. The attack may be performed from remote. The exploit has been publicly disclosed...

9CVSS5.2AI score0.03269EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2026/04/27 9:30 p.m.31 views

CVE-2026-7160 Tenda HG3 formTracert command injection

A vulnerability was determined in Tenda HG3 2.0. This vulnerability affects the function formTracert of the file /boaform/formTracert. Executing a manipulation of the argument datasize can lead to command injection. The attack may be performed from remote. The exploit has been publicly disclosed...

9CVSS0.03269EPSS
Exploits1References5
CVE
CVE
added 2026/04/27 9:30 p.m.20 views

CVE-2026-7160

The vulnerability CVE-2026-7160 affects the Tenda HG3 2.0 device. It resides in the function formTracert of the file /boaform/formTracert, where manipulating the datasize argument can lead to a command injection. The attack can be performed remotely, and the exploit has been publicly disclosed. T...

9CVSS7.8AI score0.03269EPSS
Exploits1References5Affected Software1
NVD
NVD
added 2026/04/27 8:16 p.m.5 views

CVE-2026-7151

A vulnerability was determined in Tenda HG3 2.0. Impacted is the function formUploadConfig of the file /boaform/formIPv6Routing. This manipulation of the argument destNet causes stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been publicly disclosed an...

9CVSS0.00632EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2026/04/27 7:15 p.m.2 views

CVE-2026-7151 Tenda HG3 formIPv6Routing formUploadConfig stack-based overflow

A vulnerability was determined in Tenda HG3 2.0. Impacted is the function formUploadConfig of the file /boaform/formIPv6Routing. This manipulation of the argument destNet causes stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been publicly disclosed an...

9CVSS8.7AI score0.00632EPSS
Exploits1References5
Cvelist
Cvelist
added 2026/04/27 7:15 p.m.41 views

CVE-2026-7151 Tenda HG3 formIPv6Routing formUploadConfig stack-based overflow

A vulnerability was determined in Tenda HG3 2.0. Impacted is the function formUploadConfig of the file /boaform/formIPv6Routing. This manipulation of the argument destNet causes stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been publicly disclosed an...

9CVSS0.00632EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2026/04/27 7:15 p.m.3 views

CVE-2026-7151

A vulnerability was determined in Tenda HG3 2.0. Impacted is the function formUploadConfig of the file /boaform/formIPv6Routing. This manipulation of the argument destNet causes stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been publicly disclosed an...

9CVSS8.8AI score0.00632EPSS
Exploits1References5Affected Software1
CVE
CVE
added 2026/04/27 7:15 p.m.14 views

CVE-2026-7151

CVE-2026-7151 affects Tenda HG3 (v2.0). The vulnerability is in the function formUploadConfig of /boaform/formIPv6Routing, where manipulation of the destNet argument leads to a stack-based buffer overflow. The issue can be triggered remotely, and a public exploit is described as disclosed in the ...

9CVSS8.8AI score0.00632EPSS
Exploits1References5Affected Software1
NVD
NVD
added 2026/04/27 12:16 p.m.5 views

CVE-2026-7119

A vulnerability was detected in Tenda HG3 2.0. The impacted element is an unknown function of the file /boaform/formCountrystr. The manipulation of the argument countrystr results in os command injection. The attack may be performed from remote. The exploit is now public and may be used...

9CVSS0.03269EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2026/04/27 11:30 a.m.6 views

CVE-2026-7119 Tenda HG3 formCountrystr os command injection

A vulnerability was detected in Tenda HG3 2.0. The impacted element is an unknown function of the file /boaform/formCountrystr. The manipulation of the argument countrystr results in os command injection. The attack may be performed from remote. The exploit is now public and may be used...

9CVSS7.8AI score0.03269EPSS
Exploits1References5
EUVD
EUVD
added 2026/04/27 11:30 a.m.8 views

EUVD-2026-25834

A vulnerability was detected in Tenda HG3 2.0. The impacted element is an unknown function of the file /boaform/formCountrystr. The manipulation of the argument countrystr results in os command injection. The attack may be performed from remote. The exploit is now public and may be used...

9CVSS7.7AI score0.03269EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2026/04/27 11:30 a.m.10 views

CVE-2026-7119

A vulnerability was detected in Tenda HG3 2.0. The impacted element is an unknown function of the file /boaform/formCountrystr. The manipulation of the argument countrystr results in os command injection. The attack may be performed from remote. The exploit is now public and may be used...

9CVSS7.8AI score0.03269EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2026/04/27 11:30 a.m.31 views

CVE-2026-7119 Tenda HG3 formCountrystr os command injection

A vulnerability was detected in Tenda HG3 2.0. The impacted element is an unknown function of the file /boaform/formCountrystr. The manipulation of the argument countrystr results in os command injection. The attack may be performed from remote. The exploit is now public and may be used...

9CVSS0.03269EPSS
Exploits1References5
Rows per page
Query Builder