Lucene search
K

482 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 12:11 a.m.12 views

CVE-2022-43260

Tenda AC18 V15.03.05.196318 was discovered to contain a stack overflow via the time parameter in the fromSetSysTime function...

9.8CVSS7.8AI score0.00838EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 12:6 a.m.5 views

CVE-2022-25547

Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow in the function fromSetSysTime. This vulnerability allows attackers to cause a Denial of Service DoS via the time parameter...

7.8CVSS7.6AI score0.08767EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 12:6 a.m.5 views

CVE-2022-25445

Tenda AC6 v15.03.05.09multi was discovered to contain a stack overflow via the time parameter in the PowerSaveSet function...

10CVSS7.9AI score0.09007EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:58 p.m.5 views

CVE-2022-24162

Tenda AX3 v16.03.12.10CN was discovered to contain a stack overflow in the function saveParentControlInfo. This vulnerability allows attackers to cause a Denial of Service DoS via the time parameter...

7.8CVSS7.6AI score0.01175EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:54 p.m.5 views

CVE-2022-43029

Tenda TX3 USTX3V1.0brV16.03.13.11multiTDE01 was discovered to contain a stack overflow via the time parameter at /goform/SetSysTimeCfg...

9.8CVSS7.8AI score0.00755EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:16 p.m.5 views

CVE-2022-37804

Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the time parameter in the function saveParentControlInfo...

9.8CVSS7.2AI score0.01013EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:51 p.m.5 views

CVE-2022-45656

Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the time parameter in the fromSetSysTime function...

7.5CVSS7.9AI score0.00815EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:32 p.m.5 views

CVE-2022-25429

Tenda AC9 v15.03.2.21 was discovered to contain a buffer overflow via the time parameter in the saveparentcontrolinfo function...

10CVSS7.9AI score0.01665EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:11 p.m.7 views

CVE-2022-36570

Tenda AC9 V15.03.05.19 was discovered to contain a stack overflow via the time parameter at /goform/SetLEDCfg...

7.2CVSS7.9AI score0.00906EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:43 p.m.3 views

CVE-2021-39413

Multiple Cross Site Scripting XSS vulnerabilities exits in SEO Panel v4.8.0 via the 1 totime parameter in a backlinks.php, b analytics.php, c log.php, d overview.php, e pagespeed.php, f rank.php, g review.php, h saturationchecker.php, i socialmedia.php, and j reports.php; the 2 fromtime parameter...

6.1CVSS6.4AI score0.0081EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:31 a.m.4 views

CVE-2015-6512

SQL injection vulnerability in the getmessages function in server/plugins/chatroom/chatroom.php in FreiChat 9.6 allows remote attackers to execute arbitrary SQL commands via the time parameter to server/freichat.php...

5CVSS8.8AI score0.02549EPSS
Exploits1References1
OSV
OSV
added 2025/05/16 9:15 p.m.4 views

CVE-2025-4810

A vulnerability was found in Tenda AC7 15.03.06.44. It has been declared as critical. Affected by this vulnerability is the function formSetRebootTimer of the file /goform/SetRebootTimer. The manipulation of the argument reboottime leads to stack-based buffer overflow. The attack can be launched...

8.7CVSS7.9AI score0.00817EPSS
Exploits1References5
BDU FSTEC
BDU FSTEC
added 2025/04/07 12:0 a.m.6 views

The vulnerability of the ShutdownSetAdd() function in Tenda AC10 router software allows a hacker to execute arbitrary code or cause a service failure.

The vulnerability of the ShutdownSetAdd function in Tenda AC10 router microprogramming software is related to the operation of writing data outside the buffer in memory when processing the length parameter “time”. Exploiting this vulnerability allows a remote attacker to execute arbitrary code or...

9CVSS8.4AI score0.00782EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologies
added 2025/03/18 12:0 a.m.4 views

PT-2025-23530 · Tenda · Tenda Ac6

Name of the Vulnerable Software and Affected Versions: Tenda AC6 version 15.03.05.16 Description: The issue is a stack overflow that occurs via the time parameter in the setSmartPowerManagement function. This allows for potential exploitation. No information is provided about the estimated number...

6.5CVSS6.5AI score0.00238EPSS
Exploits1References7
OSV
OSV
added 2025/03/13 2:15 p.m.5 views

CVE-2025-29360

Tenda RX3 USRX3V1.0brV16.03.13.11multiTDE01 is vulnerable to Buffer Overflow via the time and timeZone parameters at /goform/SetSysTimeCfg. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted packet...

7.5CVSS5.8AI score0.00483EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/03/13 12:0 a.m.3 views

Tenda RX3 安全漏洞

Tenda RX3 is a dual-band WiFi home wireless router from China's Tenda. A buffer overflow vulnerability exists in Tenda RX3. The vulnerability originates from a buffer overflow in the schedStartTime and schedEndTime parameters in /goform/saveParentControlInfo, which can lead to a denial of service...

7.5CVSS7.2AI score0.00483EPSS
Exploits1References2
CVE
CVE
added 2025/01/17 12:0 a.m.40 views

CVE-2024-57372

CVE-2024-57372 is an XSS vulnerability in InformationPush master version. The flaw allows a remote attacker to obtain sensitive information through the vulnerable parameters title , time , and msg . The available connected documents confirm the affected software (InformationPush master) and the e...

6.1CVSS6.2AI score0.00393EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/01/17 12:0 a.m.3 views

PT-2025-3433 · Unknown · Informationpush

Name of the Vulnerable Software and Affected Versions: InformationPush master version Description: The issue allows a remote attacker to obtain sensitive information via the title, time, and msg parameters. This is a Cross Site Scripting vulnerability. Recommendations: For InformationPush master...

6.1CVSS6.5AI score0.00393EPSS
Exploits0References7
OSV
OSV
added 2024/10/13 7:15 p.m.5 views

CVE-2024-9915

A vulnerability classified as critical was found in D-Link DIR-619L B1 2.06. Affected by this vulnerability is the function formVirtualServ of the file /goform/formVirtualServ. The manipulation of the argument curTime leads to buffer overflow. The attack can be launched remotely. The exploit has...

8.8CVSS7.6AI score0.01785EPSS
Exploits1References5
CNNVD
CNNVD
added 2024/07/30 12:0 a.m.4 views

TOTOLINK LR1200GB 命令注入漏洞

The TOTOLINK LR1200GB is a wireless dual-band 4G LTE router from China's Gion Electronics TOTOLINK. The TOTOLINK LR1200GB version 9.3.1cu.2832 suffers from a command injection vulnerability that originates from the hosttime parameter in the NTPSyncWithHost function on the /cgi-bin/cstecgi.cgi pag...

8.8CVSS7.8AI score0.03347EPSS
Exploits1References5
Rows per page
Query Builder