The vulnerability of the sub_4119A0 function in the microprogramming software of the TOTOLINK X6000R router allows a hacker to execute arbitrary code.

The vulnerability of the sub4119A0 function shttpd in the TOTOLINK X6000R router microprogramming system exists due to the lack of measures to neutralize special elements used in the operating system commands. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

Microsoft Windows Multiple Vulnerabilities (KB5033375)

This host is missing an important security update according to Microsoft KB5033375 SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...

ELECOM WRC-X3000GSN v1.0.2, WRC-X3000GS v1.0.24 and, WRC-X3000GSA v1.0.24 and versions Security Vulnerabilities

The ELECOM WRC-X3000GS2-W and ELECOM WRC-X3000GSN are both wireless routers from ELECOM. A security vulnerability exists in the ELECOM WRC-X3000GSN v1.0.2, WRC-X3000GS v1.0.24 and earlier, and WRC-X3000GSA v1.0.24 and earlier, which originated from a vulnerability that allows an attacker with...

Tenda W30E setFixTools Function Command Execution Vulnerability

The Tenda W30E is a router from the Chinese company Tenda. A command execution vulnerability exists in Tenda W30E version V16.01.0.124843, which stems from the setFixTools function failing to correctly filter constructor command special characters, commands, etc. The vulnerability can be exploite...

PT-2023-8993 · Tp Link · Tp-Link N300 Wireless Access Point +1

Name of the Vulnerable Software and Affected Versions: Tp-Link AC1350 Wireless MU-MIMO Gigabit Access Point EAP225 V3 version 5.1.0 Build 20220926 Tp-Link N300 Wireless Access Point EAP115 V4 version 5.0.4 Build 20220216 Description: A command execution vulnerability exists in the tddpd enable te...

The vulnerability of the NPM package, openSSL, arises from the lack of measures to sanitize input data, allowing attackers to execute arbitrary commands.

The vulnerability of the NPM package, openSSL, is related to the lack of measures for cleaning input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

Tenda W30E 安全漏洞

The Tenda W30E is a router from the Chinese company Tenda. A command execution vulnerability exists in Tenda W30E version V16.01.0.124843, which originates from the handler function of /goform/telnet failing to correctly filter construct command special characters, commands, etc. The vulnerabilit...

Tenda AX12 安全漏洞

Tenda AX12 is a dual-band Gigabit Wifi 6 wireless router from Tenda China. A command execution vulnerability exists in Tenda AX12 version V22.03.01.46, which is caused due to the failure of the "list" parameter of /goform/SetNetControlList to correctly filter constructed command special character...

Tenda AX9 安全漏洞

Tenda AX9 is a Wi-Fi 6 router from Tenda China. A command execution vulnerability exists in Tenda AX9 version V22.03.01.46, which stems from the failure of the "mac" parameter of /goform/SetOnlineDevName to properly filter constructor special characters, commands, etc. This vulnerability can be...

Tenda AX9 安全漏洞

Tenda AX9 is a Wi-Fi 6 router from Tenda China. A command execution vulnerability exists in Tenda AX9 version V22.03.01.46, which is caused by the "mac" parameter in /goform/setModules not properly filtering constructed command special characters, commands, etc. This vulnerability can be exploite...

Command injection

An OS command injection vulnerability exists in AE1021PE firmware version 2.0.9 and earlier and AE1021 firmware version 2.0.9 and earlier. If this vulnerability is exploited, an arbitrary OS command may be executed by an attacker who can log in to the product...

CVE-2023-45842

Multiple data integrity vulnerabilities exist in the package hash checking functionality of Buildroot 2023.08.1 and Buildroot dev commit 622698d7847. A specially crafted man-in-the-middle attack can lead to arbitrary command execution in the builder.This vulnerability is related to the mxsldr...

CVE-2023-45840

Multiple data integrity vulnerabilities exist in the package hash checking functionality of Buildroot 2023.08.1 and Buildroot dev commit 622698d7847. A specially crafted man-in-the-middle attack can lead to arbitrary command execution in the builder.This vulnerability is related to the...

CVE-2023-45839

Multiple data integrity vulnerabilities exist in the package hash checking functionality of Buildroot 2023.08.1 and Buildroot dev commit 622698d7847. A specially crafted man-in-the-middle attack can lead to arbitrary command execution in the builder.This vulnerability is related to the aufs-util...

CVE-2023-45841

Multiple data integrity vulnerabilities exist in the package hash checking functionality of Buildroot 2023.08.1 and Buildroot dev commit 622698d7847. A specially crafted man-in-the-middle attack can lead to arbitrary command execution in the builder.This vulnerability is related to the...

CVE-2023-45839

Multiple data integrity vulnerabilities exist in the package hash checking functionality of Buildroot 2023.08.1 and Buildroot dev commit 622698d7847. A specially crafted man-in-the-middle attack can lead to arbitrary command execution in the builder.This vulnerability is related to the aufs-util...

CVE-2023-45841

Multiple data integrity vulnerabilities exist in the package hash checking functionality of Buildroot 2023.08.1 and Buildroot dev commit 622698d7847. A specially crafted man-in-the-middle attack can lead to arbitrary command execution in the builder.This vulnerability is related to the...

CVE-2023-45838

Multiple data integrity vulnerabilities exist in the package hash checking functionality of Buildroot 2023.08.1 and Buildroot dev commit 622698d7847. A specially crafted man-in-the-middle attack can lead to arbitrary command execution in the builder.This vulnerability is related to the aufs packa...

CVE-2023-45842

Multiple data integrity vulnerabilities exist in the package hash checking functionality of Buildroot 2023.08.1 and Buildroot dev commit 622698d7847. A specially crafted man-in-the-middle attack can lead to arbitrary command execution in the builder.This vulnerability is related to the mxsldr...

CVE-2023-43608

A data integrity vulnerability exists in the BRNOCHECKHASHFOR functionality of Buildroot 2023.08.1 and dev commit 622698d7847. A specially crafted man-in-the-middle attack can lead to arbitrary command execution in the builder...