CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

145 matches found

CNNVD•added 2024/03/20 12:0 a.m.•1 views

Tenda AC10 安全漏洞

Tenda AC10U is a dual-band Gigabit router with 802.11ac Wave 2.0 standard, supporting MU-MIMO technology with high through-wall capability and stable transmission characteristics. The Tenda AC10U suffers from a buffer overflow vulnerability, which originates from the cmdinput parameter of the...

9CVSS8.1AI score0.00441EPSS

Exploits1References4

CNVD•added 2024/03/19 12:0 a.m.•20 views

Tenda AC18 formexeCommand function buffer overflow vulnerability

The Tenda AC18 is a router from the Chinese company Tenda. Tenda AC18 V15.03.05.05 version of the buffer overflow vulnerability, the vulnerability stems from /goform/execCommand file formexeCommand function of the cmdinput parameter fails to correctly validate the length of the input data size, a...

9CVSS8.3AI score0.00202EPSS

Exploits0References1

CNNVD•added 2024/03/17 12:0 a.m.•1 views

Tenda AC18 Security Vulnerability

Tenda AC18 is a router from Tenda, China. A security vulnerability exists in Tenda AC18 version V15.03.05.05, which is caused by a stack-based buffer overflow in the cmdinput parameter of the formexeCommand function of the /goform/execCommand file...

9CVSS7.5AI score0.00202EPSS

Exploits0References4

NVD•added 2022/12/20 3:15 p.m.•14 views

CVE-2022-46544

Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the cmdinput parameter at /goform/exeCommand...

7.5CVSS0.00336EPSS

Exploits1References1

OSV•added 2022/12/20 3:15 p.m.•3 views

CVE-2022-46544

Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the cmdinput parameter at /goform/exeCommand...

7.5CVSS6.2AI score

Exploits0References1

Prion•added 2022/12/20 3:15 p.m.•22 views

Buffer overflow

Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the cmdinput parameter at /goform/exeCommand...

5CVSS7.8AI score0.00336EPSS

Exploits1References1Affected Software1

CVE•added 2022/12/20 12:0 a.m.•71 views

CVE-2022-46544

CVE-2022-46544 affects Tenda F1203 firmware 2.0.1.6. The vulnerability is a buffer overflow in the cmdinput parameter exposed at the /goform/exeCommand API endpoint. The NVD/CVSS data indicate NETWORK access, LOW attack complexity, no privileges required, no user interaction, and an impact on ava...

7.5CVSS7.8AI score0.00336EPSS

Exploits1References1Affected Software1

Positive Technologies•added 2022/12/20 12:0 a.m.•3 views

PT-2022-27898 · Tenda · Tenda F1203

Name of the Vulnerable Software and Affected Versions: Tenda F1203 version 2.0.1.6 Description: A buffer overflow issue was discovered via the cmdinput parameter at the "/goform/exeCommand" API endpoint. Recommendations: For Tenda F1203 version 2.0.1.6, consider restricting access to the...

7.5CVSS7.5AI score0.00336EPSS

Exploits1References4

Cvelist•added 2022/12/20 12:0 a.m.•21 views

CVE-2022-46544

Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the cmdinput parameter at /goform/exeCommand...

8AI score0.00336EPSS

Exploits1References1

Vulnrichment•added 2022/12/20 12:0 a.m.•4 views

CVE-2022-46544

Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the cmdinput parameter at /goform/exeCommand...

7.8AI score0.00336EPSS

Exploits1References1

NVD•added 2022/12/08 4:15 p.m.•21 views

CVE-2022-45505

Tenda W30E V1.0.1.25633 was discovered to contain a stack overflow via the cmdinput parameter at /goform/exeCommand...

7.5CVSS0.00395EPSS

Exploits1References1

OSV•added 2022/12/08 4:15 p.m.•4 views

CVE-2022-45505

Tenda W30E V1.0.1.25633 was discovered to contain a stack overflow via the cmdinput parameter at /goform/exeCommand...

7.5CVSS5.9AI score

Exploits0References1

Prion•added 2022/12/08 4:15 p.m.•20 views

Stack overflow

Tenda W30E V1.0.1.25633 was discovered to contain a stack overflow via the cmdinput parameter at /goform/exeCommand...

5CVSS7.7AI score0.00395EPSS

Exploits1References1Affected Software1

Positive Technologies•added 2022/12/08 12:0 a.m.•3 views

PT-2022-27547 · Tenda · Tenda W30E

Name of the Vulnerable Software and Affected Versions: Tenda W30E version 1.0.1.25633 Description: A stack overflow issue was discovered via the cmdinput parameter at the "/goform/exeCommand" API endpoint. Recommendations: For Tenda W30E version 1.0.1.25633, consider restricting access to the...

7.5CVSS7.4AI score0.00395EPSS

Exploits1References3

CVE•added 2022/12/08 12:0 a.m.•66 views

CVE-2022-45505

The CVE-2022-45505 issue affects Tenda W30E, version 1.0.1.25(633), where a stack overflow is triggered by the cmdinput parameter at the /goform/exeCommand API endpoint. This is a network-accessible vulnerability with low attack complexity and no privileges required, potentially impacting availab...

7.5CVSS7.7AI score0.00395EPSS

Exploits1References1Affected Software1

Cvelist•added 2022/12/08 12:0 a.m.•11 views

CVE-2022-45505

Tenda W30E V1.0.1.25633 was discovered to contain a stack overflow via the cmdinput parameter at /goform/exeCommand...

7.9AI score0.00395EPSS

Exploits1References1

Vulnrichment•added 2022/12/08 12:0 a.m.•5 views

CVE-2022-45505

Tenda W30E V1.0.1.25633 was discovered to contain a stack overflow via the cmdinput parameter at /goform/exeCommand...

7.9AI score0.00395EPSS

Exploits1References1

CNNVD•added 2022/12/08 12:0 a.m.•2 views

Tenda W30E 缓冲区错误漏洞

Tenda W30E is a router from Tenda China. A security vulnerability exists in the Tenda W30E version V1.0.1.25633, which originates from a stack overflow contained in the cmdinput parameter via /goform/exeCommand...

7.5CVSS7.4AI score0.00395EPSS

Exploits1References2

OSV•added 2022/08/12 3:15 p.m.•2 views

CVE-2022-35555

A command injection vulnerability exists in /goform/exeCommand in Tenda W6 V1.0.0.94122, which allows attackers to construct cmdinput parameters for arbitrary command execution...

9.8CVSS6AI score0.07631EPSS

Exploits1References1