Lucene search
K

619 matches found

cnvd
cnvd
added 2025/07/29 12:0 a.m.5 views

Tenda AC8V4 Buffer Overflow Vulnerability (CNVD-2025-17345)

The Tenda AC8V4 is a wireless router from Tenda China. The Tenda AC8V4 suffers from a buffer overflow vulnerability that originates from a stack buffer overflow in the timeZone and timeType parameters in /goform/SetSysTimeCfg, which can be exploited by an attacker to crash the application...

5.3CVSS7.6AI score0.06112EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/07/26 12:29 a.m.22 views

CVE-2025-51085

Tenda AC8V4 V16.03.34.06 was discovered to contain stack overflow at /goform/SetSysTimeCfg. The manipulation of the argument timeZone and timeType leads to stack-based buffer overflow...

5.3CVSS7.6AI score0.06112EPSS
Exploits1References1
osv
osv
added 2025/07/25 3:15 p.m.4 views

CVE-2025-8160

A vulnerability classified as critical has been found in Tenda AC20 up to 16.03.08.12. Affected is an unknown function of the file /goform/SetSysTimeCfg of the component httpd. The manipulation of the argument timeZone leads to buffer overflow. It is possible to launch the attack remotely. The...

8.7CVSS6.1AI score0.01245EPSS
Exploits1References5
cnnvd
cnnvd
added 2025/07/25 12:0 a.m.5 views

Tenda AC20 安全漏洞

Tenda AC20 is a dual-band wireless router with IPv6 protocol support, featuring a triple-core 1GHz main controller with six 6dBi external antennas and a maximum wireless transmission rate of 2033Mbps. The Tenda AC20 suffers from a buffer overflow vulnerability that originates from improper handli...

9CVSS7.9AI score0.01245EPSS
Exploits1References6
osv
osv
added 2025/07/24 3:15 p.m.4 views

CVE-2025-51085

Tenda AC8V4 V16.03.34.06 was discovered to contain stack overflow at /goform/SetSysTimeCfg. The manipulation of the argument timeZone and timeType leads to stack-based buffer overflow...

5.3CVSS6.2AI score0.06112EPSS
Exploits1References2
cnnvd
cnnvd
added 2025/07/24 12:0 a.m.5 views

Tenda AC8V4 安全漏洞

The Tenda AC8V4 is a wireless router from Tenda China. The Tenda AC8V4 suffers from a buffer overflow vulnerability that originates from a stack buffer overflow in the timeZone and timeType parameters in /goform/SetSysTimeCfg, which can be exploited by an attacker to crash the application...

5.3CVSS7.5AI score0.06112EPSS
Exploits1References2
attackerkb
attackerkb
added 2025/07/24 12:0 a.m.3 views

CVE-2025-51085

Tenda AC8V4 V16.03.34.06 was discovered to contain stack overflow at /goform/SetSysTimeCfg. The manipulation of the argument timeZone and timeType leads to stack-based buffer overflow...

5.3CVSS6.5AI score0.06112EPSS
Exploits1References3
osv
osv
added 2025/07/09 7:48 p.m.6 views

CLSA-2025-1752090493 Update of tzdata

Fix incorrect tzdb.dat by harding links...

5.8AI score
Exploits0References1
osv
osv
added 2025/07/09 7:42 p.m.7 views

CLSA-2025-1752090137 Update of tzdata

Fix incorrect tzdb.dat by harding links...

5.8AI score
Exploits0References1
osv
osv
added 2025/06/30 5:15 a.m.8 views

CVE-2025-6887

A vulnerability was found in Tenda AC5 15.03.06.47 and classified as critical. Affected by this issue is some unknown functionality of the file /goform/SetSysTimeCfg. The manipulation of the argument time/timeZone leads to stack-based buffer overflow. The attack may be launched remotely. The...

8.7CVSS6.5AI score0.00788EPSS
Exploits1References7
cnnvd
cnnvd
added 2025/06/30 12:0 a.m.5 views

Tenda AC5 安全漏洞

Tenda AC5 is a wireless router from Tenda, a Chinese company. The Tenda AC5 suffers from a stack buffer overflow vulnerability, which originates from the failure of the parameters time and timeZone in the file /goform/SetSysTimeCfg to correctly validate the length of the input data, which can be...

9CVSS8.2AI score0.00788EPSS
Exploits1References8
osv
osv
added 2025/06/27 12:55 p.m.9 views

CLSA-2025-1751028944 Update of tzdata

Upgrade to tzdata-2025b - New zone for Aysén Region in Chile which moves from -04/-03 to -03. - Paraguay adopted permanent -03 starting spring 2024. - Improve pre-1991 data for the Philippines. - Etc/Unknown is now reserved...

5.8AI score
Exploits0References1
cnnvd
cnnvd
added 2025/06/06 12:0 a.m.4 views

WOLFBOX Level 2 EV Charger 安全漏洞

The WOLFBOX Level 2 EV Charger is an electric vehicle charger from WOLFBOX. A security vulnerability exists in the WOLFBOX Level 2 EV Charger that stems from improper handling of the secKey, localKey, stdTimeZone, and devId parameters, which could lead to a heap buffer overflow and remote code...

8.8CVSS9.1AI score0.00333EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/23 3:19 a.m.5 views

CVE-2023-2392

A vulnerability was found in Netgear SRX5308 up to 4.3.5-3. It has been classified as problematic. Affected is an unknown function of the file scgi-bin/platform.cgi?page=timezone.htm of the component Web Management Interface. The manipulation of the argument ManualDate.minutes leads to cross site...

4.8CVSS5.8AI score0.00649EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/05/22 9:52 p.m.9 views

CVE-2022-27000

Arris TR3300 v1.0.13 was discovered to contain a command injection vulnerability in the time and time zone function via the hprimaryntpserver, hbackupntpserver, and htimezone parameters. This vulnerability allows attackers to execute arbitrary commands via a crafted request...

10CVSS8.6AI score0.03453EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/05/22 9:4 p.m.5 views

CVE-2021-24671

The MX Time Zone Clocks WordPress plugin before 3.4.1 does not escape the timezone attribute of the mxmtzctimezoneclocks shortcode, allowing users with a role as low as Contributor to perform Stored Cross-Site Scripting attacks...

5.4CVSS6AI score0.00604EPSS
Exploits2References1
redhatcve
redhatcve
added 2025/05/22 7:38 p.m.11 views

CVE-2021-30230

The api/ZRFirmware/settimezone interface in China Mobile An Lianbao WF-1 router 1.0.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the zonename parameter...

9.8CVSS8AI score0.0327EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/04/03 3:59 p.m.5 views

CVE-2025-31801

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Maksym Marko MX Time Zone Clocks mx-time-zone-clocks allows Reflected XSS.This issue affects MX Time Zone Clocks: from n/a through = 5.1.1...

6.5CVSS7.2AI score0.00331EPSS
Exploits0References1
nvd
nvd
added 2025/04/01 3:16 p.m.7 views

CVE-2025-31801

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Maksym Marko MX Time Zone Clocks mx-time-zone-clocks allows Reflected XSS.This issue affects MX Time Zone Clocks: from n/a through = 5.1.1...

6.5CVSS0.00331EPSS
Exploits0References1
cvelist
cvelist
added 2025/04/01 2:51 p.m.17 views

CVE-2025-31801 WordPress MX Time Zone Clocks plugin <= 5.1.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Maksym Marko MX Time Zone Clocks mx-time-zone-clocks allows Reflected XSS.This issue affects MX Time Zone Clocks: from n/a through = 5.1.1...

6.5CVSS0.00331EPSS
Exploits0References1
Rows per page
Query Builder