Lucene search
K

20 matches found

CVE
CVE
added 2026/06/08 10:0 a.m.24 views

CVE-2026-11504

The CVE-2026-11504 entry concerns Tenda CX12L firmware 16.03.53.12. The vulnerability exists in the Wi‑Fi Schedule Configuration Endpoint, specifically the setSchedWifi function in /goform/openSchedWifi. Crafting the schedStartTime or schedEndTime argument causes a stack‑based buffer overflow, en...

9CVSS8.4AI score0.00466EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-53493

Malicious code in bioql PyPI...

9.8CVSS9.1AI score0.01573EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-53497

Malicious code in bioql PyPI...

6.8CVSS8.9AI score0.01476EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-53496

Malicious code in bioql PyPI...

6.8CVSS7.5AI score0.01327EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-53498

Malicious code in bioql PyPI...

6.8CVSS8.9AI score0.01327EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/23 7:29 a.m.9 views

CVE-2024-57021

TOTOLINK X5000R V9.1.0cu.2350B20230313 was discovered to contain an OS command injection vulnerability via the "eHour" parameter in setWiFiScheduleCfg...

8.8CVSS8AI score0.01573EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:29 a.m.13 views

CVE-2024-57020

TOTOLINK X5000R V9.1.0cu.2350B20230313 was discovered to contain an OS command injection vulnerability via the "sMinute" parameter in setWiFiScheduleCfg...

8.8CVSS8AI score0.01573EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:29 a.m.7 views

CVE-2024-57024

TOTOLINK X5000R V9.1.0cu.2350B20230313 was discovered to contain an OS command injection vulnerability via the "eMinute" parameter in setWiFiScheduleCfg...

6.8CVSS8.1AI score0.01476EPSS
Exploits1References1
NVD
NVD
added 2025/01/15 5:15 p.m.26 views

CVE-2024-57021

TOTOLINK X5000R V9.1.0cu.2350B20230313 was discovered to contain an OS command injection vulnerability via the "eHour" parameter in setWiFiScheduleCfg...

8.8CVSS0.01573EPSS
Exploits1References2
NVD
NVD
added 2025/01/15 5:15 p.m.26 views

CVE-2024-57020

TOTOLINK X5000R V9.1.0cu.2350B20230313 was discovered to contain an OS command injection vulnerability via the "sMinute" parameter in setWiFiScheduleCfg...

8.8CVSS0.01573EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2025/01/15 12:0 a.m.7 views

CVE-2024-57025

TOTOLINK X5000R V9.1.0cu.2350B20230313 was discovered to contain an OS command injection vulnerability via the "desc" parameter in setWiFiScheduleCfg...

8AI score0.01327EPSS
Exploits1References2
CVE
CVE
added 2025/01/15 12:0 a.m.53 views

CVE-2024-57023

CVE-2024-57023 affects TOTOLINK X5000R (version 9.1.0cu.2350_B20230313). The issue is an OS command injection in the function setWiFiScheduleCfg, caused by improper filtering of special characters in the "week" parameter, enabling arbitrary command execution. Documented impact includes potential ...

6.8CVSS7.7AI score0.01327EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2025/01/15 12:0 a.m.9 views

CVE-2024-57024

TOTOLINK X5000R V9.1.0cu.2350B20230313 was discovered to contain an OS command injection vulnerability via the "eMinute" parameter in setWiFiScheduleCfg...

8AI score0.01476EPSS
Exploits1References2
CVE
CVE
added 2025/01/15 12:0 a.m.79 views

CVE-2024-57021

CVE-2024-57021 affects TOTOLINK X5000R, firmware version V9.1.0cu.2350_B20230313. The vulnerability is an OS command injection in the router’s setWiFiScheduleCfg function, caused by inadequate filtering of the eHour parameter. Impact is arbitrary command execution with high severity (per linked C...

8.8CVSS7.7AI score0.01573EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2025/01/15 12:0 a.m.18 views

CVE-2024-57022

TOTOLINK X5000R V9.1.0cu.2350B20230313 was discovered to contain an OS command injection vulnerability via the "sHour" parameter in setWiFiScheduleCfg...

0.01573EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/01/15 12:0 a.m.22 views

CVE-2024-57024

TOTOLINK X5000R V9.1.0cu.2350B20230313 was discovered to contain an OS command injection vulnerability via the "eMinute" parameter in setWiFiScheduleCfg...

0.01476EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/01/15 12:0 a.m.20 views

CVE-2024-57021

TOTOLINK X5000R V9.1.0cu.2350B20230313 was discovered to contain an OS command injection vulnerability via the "eHour" parameter in setWiFiScheduleCfg...

0.01573EPSS
Exploits1References2
CNNVD
CNNVD
added 2025/01/15 12:0 a.m.4 views

TOTOLINK X5000R 安全漏洞

The TOTOLINK X5000R is a router from China's Gion Electronics TOTOLINK. The TOTOLINK X5000R suffers from a command injection vulnerability that stems from the "desc" parameter in setWiFiScheduleCfg failing to properly filter constructed command special characters, commands, etc. This vulnerabilit...

6.8CVSS9.3AI score0.01327EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2025/01/15 12:0 a.m.6 views

CVE-2024-57020

TOTOLINK X5000R V9.1.0cu.2350B20230313 was discovered to contain an OS command injection vulnerability via the "sMinute" parameter in setWiFiScheduleCfg...

8AI score0.01573EPSS
Exploits1References2
CVE
CVE
added 2025/01/15 12:0 a.m.51 views

CVE-2024-57025

TOTOLINK X5000R (version 9.1.0cu.2350_B20230313) is affected by an OS command injection in the setWiFiScheduleCfg function, exploitable via the desc parameter. The issue stems from inadequate validation of command-related input, enabling arbitrary command execution. Several connected sources corr...

6.8CVSS7.7AI score0.01327EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder