CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

30 matches found

EUVD•added 2026/04/10 6:31 a.m.•6 views

EUVD-2026-21312

A vulnerability was found in Tenda AC9 15.03.02.13. The affected element is the function decodePwd of the file /goform/WizardHandle of the component POST Request Handler. Performing a manipulation of the argument WANS results in stack-based buffer overflow. The attack can be initiated remotely. T...

9CVSS7.8AI score0.00092EPSS

Exploits1References6

Vulnrichment•added 2026/04/10 5:0 a.m.•2 views

CVE-2026-6016 Tenda AC9 POST Request WizardHandle decodePwd stack-based overflow

9CVSS8AI score0.00092EPSS

Exploits1References5

ATTACKERKB•added 2026/04/10 5:0 a.m.•3 views

CVE-2026-6016

9CVSS7.8AI score0.00092EPSS

Exploits1References5Affected Software1

Cvelist•added 2026/04/10 5:0 a.m.•24 views

CVE-2026-6016 Tenda AC9 POST Request WizardHandle decodePwd stack-based overflow

9CVSS0.00092EPSS

Exploits1References5

CVE•added 2026/04/10 5:0 a.m.•8 views

CVE-2026-6016

CVE-2026-6016 affects Tenda AC9 15.03.02.13. The vulnerability exists in the decodePwd function of /goform/WizardHandle within the POST Request Handler. Adversaries can trigger a stack-based buffer overflow by manipulating the WANS argument, with the attackable surface exposed remotely. Public ex...

9CVSS7.8AI score0.00092EPSS

Exploits1References5Affected Software1

EUVD•added 2026/03/27 6:31 p.m.•1 views

EUVD-2026-16723

A vulnerability was determined in Tenda AC6 15.03.05.16. Affected is the function fromWizardHandle of the file /goform/WizardHandle of the component POST Request Handler. Executing a manipulation of the argument WANT/WANS can lead to stack-based buffer overflow. The attack can be executed remotel...

9CVSS7.9AI score0.00037EPSS

Exploits1References6

NVD•added 2026/03/27 5:16 p.m.•1 views

CVE-2026-4960

9CVSS0.00037EPSS

Exploits1References5

ATTACKERKB•added 2026/03/27 4:9 p.m.•1 views

CVE-2026-4960

9CVSS8AI score0.00037EPSS

Exploits1References5Affected Software1

CVE•added 2026/03/27 4:9 p.m.•3 views

CVE-2026-4960

The CVE-2026-4960 entry concerns Tenda AC6 firmware (15.03.05.16) with a vulnerability in the POST Request Handler’s WizardHandle component. Specifically, the fromWizardHandle function processes the WANT/WANS argument in /goform/WizardHandle; manipulating this input can cause a stack-based buffer...

9CVSS8AI score0.00037EPSS

Exploits1References5Affected Software1

EUVD•added 2026/03/27 3:31 a.m.•1 views

EUVD-2026-16524

A vulnerability was determined in Tenda AC5 15.03.06.47. The affected element is the function decodePwd of the file /goform/WizardHandle of the component POST Request Handler. Executing a manipulation of the argument WANT/WANS can lead to stack-based buffer overflow. The attack can be executed...

9CVSS8.1AI score0.00106EPSS

Exploits1References6

NVD•added 2026/03/27 1:16 a.m.•1 views

CVE-2026-4906

9CVSS0.00106EPSS

Exploits1References5

Vulnrichment•added 2026/03/27 12:53 a.m.•1 views

CVE-2026-4906 Tenda AC5 POST Request WizardHandle decodePwd stack-based overflow

9CVSS6.6AI score0.00106EPSS

Exploits1References5

CVE•added 2026/03/27 12:53 a.m.•4 views

CVE-2026-4906

CVE-2026-4906 affects Tenda AC5 firmware 15.03.06.47. The vulnerability resides in the decodePwd function of the /goform/WizardHandle POST Request Handler. By manipulating the WANT/WANS argument, an attacker can trigger a stack-based buffer overflow, with remote execution potential. Public disclo...

9CVSS8.1AI score0.00106EPSS

Exploits1References5Affected Software1

Positive Technologies•added 2026/03/26 12:0 a.m.•3 views

PT-2026-28669

Name of the Vulnerable Software and Affected Versions Tenda AC5 version 15.03.06.47 Description A flaw exists in the Tenda AC5 device. The issue is located within the decodePwd function of the /goform/WizardHandle file, part of the POST Request Handler component. Manipulating the WANT or WANS...

9CVSS6.4AI score0.00106EPSS

Exploits1References11

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2025-31477

Malicious code in bioql PyPI...

9CVSS8.8AI score0.00354EPSS

Exploits1References8

RedhatCVE•added 2025/09/29 10:43 p.m.•5 views

CVE-2025-11122

A vulnerability was detected in Tenda AC18 15.03.05.19. This affects an unknown function of the file /goform/WizardHandle. The manipulation of the argument WANT/mtuvalue results in stack-based buffer overflow. The attack can be launched remotely. The exploit is now public and may be used...

9CVSS7.2AI score0.00354EPSS

Exploits1References1

NVD•added 2025/09/28 10:15 p.m.•2 views

CVE-2025-11122

9CVSS0.00354EPSS

Exploits1References7

Cvelist•added 2025/09/28 10:2 p.m.•3 views

CVE-2025-11122 Tenda AC18 WizardHandle stack-based overflow

9CVSS0.00354EPSS

Exploits1References7

Vulnrichment•added 2025/09/28 10:2 p.m.•1 views

CVE-2025-11122 Tenda AC18 WizardHandle stack-based overflow

9CVSS7.1AI score0.00354EPSS

Exploits1References7

CVE•added 2025/09/28 10:2 p.m.•8 views

CVE-2025-11122

CVE-2025-11122 affects Tenda AC18 (firmware 15.03.05.19). The vulnerability is a stack-based overflow in /goform/WizardHandle triggered by manipulating the mtuvalue (and WANT) argument, with remote access and a public exploit reported. Several sources confirm the same issue. No publicly documente...

9CVSS7.1AI score0.00354EPSS

Exploits1References7Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by