Lucene search
K

482 matches found

CNNVD
CNNVD
added 2024/07/27 12:0 a.m.3 views

Tenda O3 安全漏洞

Tenda O3 is an outdoor wireless bridge from Tenda, China. The Tenda O3 suffers from a buffer overflow vulnerability that originates from the parameter time failing to correctly validate the length and size of input data, which can be exploited by an attacker to execute arbitrary code on the syste...

9CVSS8.2AI score0.01286EPSS
Exploits1References5
BDU FSTEC
BDU FSTEC
added 2024/07/17 12:0 a.m.6 views

The vulnerability of the sub_42BD7C() function in the /goform/SetLEDCfg file of the Tenda TX9 Pro router’s microprogramming software allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the sub42BD7C function in the /goform/SetLEDCfg file of the Tenda TX9 Pro router’s microprogramming system is related to buffer overflow based on a stack. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of th...

9CVSS8.1AI score0.01453EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2024/06/03 8:15 p.m.4 views

CVE-2024-36783

TOTOLINK LR350 V9.3.5u.6369B20220309 was discovered to contain a command injection via the hosttime parameter in the NTPSyncWithHost function...

9.8CVSS5.8AI score
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/05/30 12:0 a.m.6 views

PT-2024-4058 · Totolink · Totolink Lr350

Name of the Vulnerable Software and Affected Versions: TOTOLINK LR350 version V9.3.5u.6369 B20220309 Description: The issue is related to the NTPSyncWithHost function in the TOTOLINK LR350 router's firmware, which lacks input validation. This can be exploited by a remote attacker to execute...

9.8CVSS7.9AI score0.01386EPSS
Exploits0References11
OSV
OSV
added 2024/05/28 3:15 p.m.4 views

CVE-2024-35397

TOTOLINK CP900L v4.1.5cu.798B20221228 weas discovered to contain a command injection vulnerability in the NTPSyncWithHost function via the hostTime parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request...

8.8CVSS6.1AI score0.18985EPSS
Exploits0References2
OSV
OSV
added 2024/05/14 3:38 p.m.5 views

CVE-2024-34218

TOTOLINK outdoor CPE CP450 v4.1.0cu.747B20191224 was discovered to contain a command injection vulnerability in the NTPSyncWithHost function via the hostTime parameter...

3.8CVSS5.8AI score0.17571EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2024/05/09 12:0 a.m.4 views

PT-2024-3691 · Totolink · Totolink Cp450

Name of the Vulnerable Software and Affected Versions: TOTOLINK CP450 versions 4.1.0cu.747 B20191224 Description: The issue is related to the NTPSyncWithHost function of the Request Handler component in the TOTOLINK CP450 router's firmware, which fails to properly sanitize data at the management...

10CVSS8.2AI score0.17571EPSS
Exploits1References4
BDU FSTEC
BDU FSTEC
added 2024/05/06 12:0 a.m.3 views

The vulnerability of the sub_42C014() function (/goform/PowerSaveSet) in the Tenda TX9 Pro router’s microprogramming system allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the sub42C014 function /goform/PowerSaveSet of the Tenda TX9 Pro router’s microprogramming software is related to the execution of operations outside the buffer in memory when processing the time parameter. Exploiting this vulnerability can allow an attacker to compromise the...

9CVSS8.1AI score0.01349EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/05/06 12:0 a.m.5 views

The vulnerability of the sub_42D4DC() function (/goform/SetSysTimeCfg) in the Tenda TX9 Pro router’s microprogramming system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the sub42D4DC function /goform/SetSysTimeCfg of the Tenda TX9 Pro router’s microprogramming system is related to the issue of the operation exceeding the buffer boundaries in memory when processing the time parameter. Exploiting this vulnerability allows a remote attacker to...

9CVSS8AI score0.01453EPSS
Exploits0References3Affected Software1
CNVD
CNVD
added 2024/04/28 12:0 a.m.7 views

Unspecified vulnerability in Tenda TX9 (CNVD-2024-23318)

Tenda TX9 is a dual-band Wi-Fi 6 router from Tenda, China. A security vulnerability exists in the Tenda TX9 version 22.03.02.10, which originates from a buffer overflow vulnerability in the time parameter of the sub42D4DC method of the /goform/SetSysTimeCfg file, where manipulation of the...

9CVSS7.5AI score0.01453EPSS
Exploits0References1
OSV
OSV
added 2024/04/24 2:15 p.m.3 views

CVE-2024-4111

A vulnerability was found in Tenda TX9 22.03.02.10. It has been rated as critical. Affected by this issue is the function sub42BD7C of the file /goform/SetLEDCfg. The manipulation of the argument time leads to stack-based buffer overflow. The attack may be launched remotely. The exploit has been...

8.8CVSS6.5AI score0.01453EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/04/24 12:0 a.m.2 views

Tenda TX9 安全漏洞

Tenda TX9 Pro is a dual-band Wi-Fi 6 router from Tenda China. A security vulnerability exists in Tenda TX9 version 22.03.02.10, which originates from a buffer overflow vulnerability in the time parameter of the sub42C014 method of the /goform/PowerSaveSet file...

9CVSS7.5AI score0.01349EPSS
Exploits0References5
CNNVD
CNNVD
added 2024/04/24 12:0 a.m.4 views

Tenda TX9 安全漏洞

Tenda TX9 Pro is a dual-band Wi-Fi 6 router from Tenda China. A security vulnerability exists in Tenda TX9 version 22.03.02.10, which originates from a buffer overflow vulnerability in the time parameter of the sub42BD7C method of the /goform/SetLEDCfg file...

9CVSS7.5AI score0.01453EPSS
Exploits0References5
CNNVD
CNNVD
added 2024/04/24 12:0 a.m.2 views

Tenda TX9 安全漏洞

Tenda TX9 is a dual-band Wi-Fi 6 router from Tenda, China. A security vulnerability exists in the Tenda TX9 version 22.03.02.10, which originates from a buffer overflow vulnerability in the time parameter of the sub42D4DC method of the /goform/SetSysTimeCfg file, where manipulation of the...

9CVSS7.6AI score0.01453EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2024/04/18 12:0 a.m.4 views

The vulnerability of the NTPSyncWithHost function in TOTOLINK EX200 router microprogramming software allows a hacker to execute arbitrary code.

The vulnerability of the NTPSyncWithHost function in TOTOLINK EX200 router microprogramming software is related to deficiencies in the authentication process. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using the hostTime parameter...

5.3CVSS6AI score0.01368EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2024/04/16 12:0 a.m.4 views

PT-2024-3227 · Tenda · Tenda Tx9

Name of the Vulnerable Software and Affected Versions: Tenda TX9 version 22.03.02.10 Description: A critical issue has been found in the function sub 42C014 of the file /goform/PowerSaveSet. The manipulation of the argument time leads to a stack-based buffer overflow. This issue can be exploited...

9CVSS8.9AI score0.01349EPSS
Exploits0References8
CNVD
CNVD
added 2024/04/03 12:0 a.m.8 views

Tenda FH1202 time parameter buffer overflow vulnerability

The Tenda FH1202 is a wireless router from Tenda China. A buffer overflow vulnerability exists in the Tenda FH1202 v1.2.0.14408, which is caused due to the time parameter of the saveParentControlInfo method failing to properly validate the length of the input data, and can be exploited by an...

8.8CVSS8.2AI score0.00685EPSS
Exploits1References1
CNVD
CNVD
added 2024/04/03 12:0 a.m.2 views

Tenda FH1205 saveParentControlInfo method stack buffer overflow vulnerability

The Tenda FH1205 is a home wireless router from China's Tenda, geared toward the average home network environment, providing wireless connectivity. The Tenda FH1205 suffers from a stack buffer overflow vulnerability that originates from the time parameter of the saveParentControlInfo method faili...

9.8CVSS8.4AI score0.00807EPSS
Exploits1References1
CNVD
CNVD
added 2024/04/03 12:0 a.m.3 views

Tenda FH1203 saveParentControlInfo method time parameter buffer overflow vulnerability

Tenda FH1203 is a dual-band wireless router from Tenda China, mainly used for home network coverage. The Tenda FH1203 suffers from a buffer overflow vulnerability that originates from the time parameter of the saveParentControlInfo method failing to properly validate the length of the input data,...

8CVSS8.3AI score0.00698EPSS
Exploits1References1
CNVD
CNVD
added 2024/04/03 12:0 a.m.3 views

Tenda AC15 Stack Buffer Overflow Vulnerability

Tenda AC15 is a home dual-band wireless router launched by Shenzhen Jixiang Tenda Technology Co. in October 2015, which supports 802.11ac and 802.11n dual-band concurrency, with theoretical transmission rates up to 1900Mbps 600Mbps in the 2.4GHz band and 1300Mbps in the 5GHz band. A stack buffer...

4.3CVSS7.5AI score0.00357EPSS
Exploits0References1
Rows per page
Query Builder