253330 matches found
PT-2026-48140
InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
CVE-2026-36808
Shenzhen Tenda Technology Co., Ltd Tenda W15E v15.11.0.10 was discovered to contain a buffer overflow in the webAuthUserInfo parameter of the formAddWebAuthUser function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted HTTP request...
CVE-2026-36806
The vulnerability CVE-2026-36806 affects Shenzhen Tenda Technology Co., Ltd. Tenda W15E running v15.11.0.10. A buffer overflow in the webAuthUserPwd parameter of the formModifyWebAuthUser function allows an attacker to trigger a Denial of Service via a crafted HTTP request. What is affected: W15E...
CVE-2026-36816
Affected product: Shenzhen Tenda Technology Co., Ltd Tenda W15E (firmware v15.11.0.10). Vulnerability: buffer overflow in the wewifiWhiteUserInfo parameter of the formAddWewifiWhiteUser function. Impact: enables an attacker to cause a Denial of Service (DoS) via a crafted HTTP request. Root cause...
CVE-2026-36813
The CVE-2026-36813 affects Shenzhen Tenda Technology Co., Ltd Tenda W15E v15.11.0.10. A buffer overflow in the picCropName parameter of the formCropAndSetWewifiPic function enables a Denial of Service via a crafted HTTP request. Affected component: WewifiPic handling in W15E firmware. Root cause:...
CVE-2026-36823
Summary: CVE-2026-36823 affects Shenzhen Tenda Technology Co., Ltd. Tenda W20E, version v15.11.0.6. A buffer overflow in the webAuthUserInfo parameter of the function formAddWebAuthUser can cause a Denial of Service (DoS) via a crafted HTTP request. The published metrics indicate a CVSS v3.1 base...
CVE-2026-36820
CVE-2026-36820 affects Shenzhen Tenda Technology Co., Ltd. Tenda W20E v15.11.0.6. A buffer overflow in the webAuthWhiteUserInfo parameter of the formAddWebAuthWhiteUser function is described, enabling a crafted HTTP request to trigger a Denial of Service (DoS). No exploitation details, affected v...
CVE-2026-36819
The CVE covers Shenzhen Tenda Technology Co., Ltd Tenda W20E devices (v15.11.0.6). A buffer overflow in the bindMACAddr parameter of the fromSetDhcpRules function is reported, enabling a DoS through a crafted HTTP request. Affected component: W20E firmware; underlying issue: improper input handli...
CVE-2026-36799
CVE-2026-36799 affects Shenzhen Tenda Technology Co., Ltd Tenda G0 v15.11.0.5. The Red Hat/NVD entries describe a buffer overflow in the portalAuth parameter of the formPortalAuth function, leading to Denial of Service via a crafted HTTP request. The exploitation details, affected version, and ro...
CVE-2026-36801
CVE-2026-36801 concerns Shenzhen Tenda Technology Co., Ltd. Tenda G0 firmware v15.11.0.5, where a buffer overflow in the IPMacBindRule parameter of the formIPMacBindAdd function can be triggered by a crafted HTTP request, leading to a Denial of Service. Affected component/trigger: the vulnerable ...
CVE-2026-36808
CVE-2026-36808 affects Shenzhen Tenda Technology Co., Ltd Tenda W15E v15.11.0.10. The issue is a buffer overflow in the webAuthUserInfo parameter of the formAddWebAuthUser function, leading to Denial of Service via a crafted HTTP request. Connected sources (Red Hat, NVD, CVE lists) confirm the sa...
PT-2026-48194
Shenzhen Tenda Technology Co., Ltd Tenda PW201A v1.0.5 was discovered to contain a buffer overflow in the page parameter of the SafeMacFilter function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted HTTP request...
PT-2026-48207
Shenzhen Tenda Technology Co., Ltd Tenda W20E v15.11.0.6 was discovered to contain a buffer overflow in the wewifiWhiteUserInfo parameter of the formAddWewifiWhiteUser function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted HTTP request...
CVE-2026-36813
Shenzhen Tenda Technology Co., Ltd Tenda W15E v15.11.0.10 was discovered to contain a buffer overflow in the picCropName parameter of the formCropAndSetWewifiPic function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted HTTP request...
PT-2026-48212
Shenzhen Tenda Technology Co., Ltd Tenda W20E v15.11.0.6 was discovered to contain a buffer overflow in the webAuthUserInfo parameter of the formAddWebAuthUser function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted HTTP request...
PT-2026-48197
Shenzhen Tenda Technology Co., Ltd Tenda W15E v15.11.0.10 was discovered to contain a buffer overflow in the webAuthUserPwd parameter of the formModifyWebAuthUser function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted HTTP request...
PT-2026-48210
Shenzhen Tenda Technology Co., Ltd Tenda W20E v15.11.0.6 was discovered to contain a buffer overflow in the picCropName parameter of the formCropAndSetWewifiPic function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted HTTP request...
CVE-2026-36807
The CVE relates to Shenzhen Tenda Technology Co., Ltd. Tenda W15E (firmware v15.11.0.10). An input validation flaw in the webAuthUserPwd parameter of the formAddWebAuthUser function allows a crafted HTTP request to trigger a buffer overflow, resulting in Denial of Service (DoS). According to the ...
CVE-2026-36807
Shenzhen Tenda Technology Co., Ltd Tenda W15E v15.11.0.10 was discovered to contain a buffer overflow in the webAuthUserPwd parameter of the formAddWebAuthUser function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted HTTP request...
PT-2026-48191
Shenzhen Tenda Technology Co., Ltd Tenda G0 v15.11.0.5 was discovered to contain a buffer overflow in the portalAuth parameter of the formPortalAuth function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted HTTP request...