Lucene search
K

12 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-32998

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.01008EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-32999

Malicious code in bioql PyPI...

9.8CVSS9.5AI score0.2197EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:41 p.m.8 views

CVE-2022-28557

There is a command injection vulnerability at the /goform/setsambacfg interface of Tenda AC15 USAC15V1.0BRV15.03.05.20multiTDE01.bin device web, which can also cooperate with CVE-2021-44971 to cause unconditional arbitrary command execution...

9.8CVSS7AI score0.2197EPSS
Exploits1References1
CNVD
CNVD
added 2022/05/07 12:0 a.m.58 views

Tenda AC15 Command Injection Vulnerability

The Tenda AC15 is a wireless router from the Chinese company Tenda. The Tenda AC15 has a security vulnerability that can be exploited by an attacker to cause unconditional arbitrary command execution in conjunction with CVE-2021-44971...

9.8CVSS8.6AI score0.2197EPSS
Exploits1References1
NVD
NVD
added 2022/05/04 4:15 p.m.21 views

CVE-2022-28556

Tenda AC15 USAC15V1.0BRV15.03.05.20multiTDE01.bin is vulnerable to Buffer Overflow. The stack overflow vulnerability lies in the /goform/setpptpservercfg interface of the web. The sent post data startip and endip are copied to the stack using the sanf function, resulting in stack overflow...

7.5CVSS0.01008EPSS
Exploits1References1
OSV
OSV
added 2022/05/04 4:15 p.m.4 views

CVE-2022-28557

There is a command injection vulnerability at the /goform/setsambacfg interface of Tenda AC15 USAC15V1.0BRV15.03.05.20multiTDE01.bin device web, which can also cooperate with CVE-2021-44971 to cause unconditional arbitrary command execution...

9.8CVSS7.4AI score0.2197EPSS
Exploits1References1
Prion
Prion
added 2022/05/04 4:15 p.m.25 views

Command injection

There is a command injection vulnerability at the /goform/setsambacfg interface of Tenda AC15 USAC15V1.0BRV15.03.05.20multiTDE01.bin device web, which can also cooperate with CVE-2021-44971 to cause unconditional arbitrary command execution...

7.5CVSS8.9AI score0.2197EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2022/05/04 4:15 p.m.21 views

Buffer overflow

Tenda AC15 USAC15V1.0BRV15.03.05.20multiTDE01.bin is vulnerable to Buffer Overflow. The stack overflow vulnerability lies in the /goform/setpptpservercfg interface of the web. The sent post data startip and endip are copied to the stack using the sanf function, resulting in stack overflow...

5CVSS8.6AI score0.0208EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/05/04 3:13 p.m.24 views

CVE-2022-28556

Tenda AC15 USAC15V1.0BRV15.03.05.20multiTDE01.bin is vulnerable to Buffer Overflow. The stack overflow vulnerability lies in the /goform/setpptpservercfg interface of the web. The sent post data startip and endip are copied to the stack using the sanf function, resulting in stack overflow...

9AI score0.01008EPSS
Exploits1References1
CVE
CVE
added 2022/05/04 3:13 p.m.99 views

CVE-2022-28556

The CVE-2022-28556 entry affects Tenda AC15 devices (US_AC15V1.0BR_V15.03.05.20_multi_TDE01.bin) via the web interface /goform/setpptpservercfg. The vulnerability is a stack-based buffer overflow caused by copying the post fields startip and endip to the stack (sanf function), leading to a stack ...

7.5CVSS8.6AI score0.01008EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2022/01/28 7:15 p.m.24 views

CVE-2021-44971

Multiple Tenda devices are affected by authentication bypass, such as AC15V1.0 Firmware V15.03.05.20multi?AC5V1.0 Firmware V15.03.06.48multi and so on. an attacker can obtain sensitive information, and even combine it with authenticated command injection to implement RCE...

9.8CVSS0.0208EPSS
Exploits0References1
CVE
CVE
added 2022/01/28 6:17 p.m.69 views

CVE-2021-44971

Summary: CVE-2022-28557 is a command-injection vulnerability in the Tenda AC15 web interface (/goform/setsambacfg) that can lead to unconditional arbitrary command execution. It can cooperate with CVE-2021-44971 to achieve this. The vulnerability is reported within Red Hat/RedHat-derived advisori...

9.8CVSS8.8AI score0.0208EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder