641 matches found
EUVD-2023-50669
Certain GL.iNet devices with 4.x firmware allow authentication bypass resulting in administrative control of the device via a username that is both a valid SQL statement and a valid regular expression. For example, this affects version 4.3.7 on GL-MT3000 GL-AR300M GL-B1300 GL-AX1800 GL-AR750S...
EUVD-2026-20546
An external control of configuration vulnerability in the OpenVPN module of TP-Link AX53 v1.0 allows an authenticated adjacent attacker to read arbitrary file when a malicious configuration file is processed. Successful exploitation may allow unauthorized access to arbitrary files on the device,...
cc.chensoul.nacos:nacos-distribution (=2.5.2), com.buession.security:buession-security-spring (>=3.0.0 <=3.0.1) +521 more potentially affected by CVE-2026-22732 via org.springframework.security:spring-security-web (>=5.8.0 <=5.8.16)
org.springframework.security:spring-security-web MAVEN version =5.8.0, =3.0.0, =3.0.0, =3.0.0, =3.0.0, =5.12.0, =5.12.0, =1.48.0, =1.48.0, =1.48.0, =2.4.0, =2.4.0, =2.4.0, =4.5.0, =4.5.0, =4.5.1 and more Source cves: CVE-2026-22732 Source advisory: OSV:GHSA-MF92-479X-3373...
CVE-2025-58345
An issue was discovered in the Wi-Fi driver in Samsung Mobile Processor and Wearable Processor Exynos 980, 850, 1080, 1280, 1330, 1380, 1480, 1580, W920, W930 and W1000. There is unbounded memory allocation via a large buffer in a /proc/driver/unifi0/apcertif11axmode write operation, leading to...
CVE-2025-58345
This CVE affects the Wi‑Fi driver in Samsung’s Exynos family (980, 850, 1080, 1280, 1330, 1380, 1480, 1580, W920, W930, W1000). The issue is an unbounded memory allocation caused by writing to /proc/driver/unifi0/ap_certif_11ax_mode, resulting in kernel memory exhaustion. No exploit details are p...
CVE-2025-70645
Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the deviceList parameter of the formSetWifiMacFilterCfg function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...
CVE-2025-70644
Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the time parameter of the sub60CFC function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...
CVE-2025-70650
Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the deviceList parameter of the formSetMacFilterCfg function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...
CVE-2025-70651
Tenda AX-1803 v1.0.0.1 was discovered to contain a stack overflow in the ssid parameter of the formfastsettingwifiset function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...
CVE-2025-70644
Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the time parameter of the sub60CFC function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...
CVE-2025-70644
Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the time parameter of the sub60CFC function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...
CVE-2025-70650
Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the deviceList parameter of the formSetMacFilterCfg function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...
CVE-2025-70645
Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the deviceList parameter of the formSetWifiMacFilterCfg function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...
CVE-2025-70651
Tenda AX-1803 v1.0.0.1 was discovered to contain a stack overflow in the ssid parameter of the formfastsettingwifiset function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...
CVE-2025-70645
Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the deviceList parameter of the formSetWifiMacFilterCfg function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...
CVE-2025-70650
Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the deviceList parameter of the formSetMacFilterCfg function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...
CVE-2025-70651
Tenda AX-1803 v1.0.0.1 was discovered to contain a stack overflow in the ssid parameter of the formfastsettingwifiset function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...
CVE-2025-70645
CVE-2025-70645 concerns Tenda AX-1806 v1.0.0.1, where a stack overflow in the deviceList parameter of the formSetWifiMacFilterCfg function can be exploited to cause a Denial of Service (DoS) through a crafted request. Public references consistently describe the vulnerability in this product/versi...
PT-2026-3773
Name of the Vulnerable Software and Affected Versions Tenda AX-1803 version 1.0.0.1 Description The Tenda AX-1803 router contains a stack overflow in the ssid parameter of the form fast setting wifi set function. This issue allows attackers to cause a Denial of Service DoS by sending a crafted...
CVE-2025-70651
CVE-2025-70651 affects Tenda AX-1803 v1.0.0.1. A stack overflow in the ssid parameter of the function form_fast_setting_wifi_set() can be triggered by a crafted request to cause a Denial of Service (DoS). Public sources consistently describe the vulnerability as a DoS issue without detailing remo...