The vulnerabilities of the functions ate_Tenda_mfg_check_usb() and ate_Tenda_mfg_check_usb3() (/goform/ate) in the Tenda AC1206 router’s microprogramming software allow a malicious individual to execute arbitrary code or cause service failures.

The vulnerability of the functions ateTendamfgcheckusb and ateTendamfgcheckusb3 /goform/ate of the Tenda AC1206 router’s microprogramming software lies in the fact that the operation outputs outside the buffer in memory when processing the arg parameter. Exploiting this vulnerability allows a...

Western Digital MyCloud NAS Remote Command Injection Vulnerability

Western Digital MyCloud NAS is a personal cloud storage device. Western Digital MyCloud NAS version 2.11.142 suffers from a remote command injection vulnerability in /web/googleanalytics.php, which allows an attacker to execute arbitrary commands with root privileges via the arg parameter within...