Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

130 matches found

OSV
OSVadded 2024/07/29 12:15 a.m.0 views

CVE-2024-7174

A vulnerability, which was classified as critical, was found in TOTOLINK A3600R 4.1.2cu.5182B20201102. This affects the function setdeviceName of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument deviceMac/deviceName leads to buffer overflow. It is possible to initiate the attack...

8.8CVSS6.1AI score
Exploits0References4
Positive Technologies
Positive Technologiesadded 2024/07/29 12:0 a.m.3 views

PT-2024-38136 · Totolink · Totolink A3600R

Name of the Vulnerable Software and Affected Versions: TOTOLINK A3600R version 4.1.2cu.5182 B20201102 Description: A critical issue was found in the setdeviceName function of the /cgi-bin/cstecgi.cgi file, where manipulation of the deviceMac/deviceName argument leads to buffer overflow. This can ...

9CVSS8.8AI score0.0034EPSS
Exploits1References8
CNNVD
CNNVDadded 2024/05/03 12:0 a.m.1 views

D-Link DAP-1325 安全漏洞

D-Link DAP-1325 is a wireless network extender made by D-Link, which is mainly used to extend the wireless network coverage, support the conversion of wired network and wireless network or connect to different wireless networks. The D-Link DAP-1325 suffers from a command injection remote code...

8.8CVSS9AI score0.01756EPSS
Exploits0References3
CNNVD
CNNVDadded 2024/05/03 12:0 a.m.3 views

D-Link DAP-1325 安全漏洞

D-Link DAP-1325 is a wireless network extender made by D-Link, which is mainly used to extend the wireless network coverage, support the conversion of wired network and wireless network or connect to different wireless networks. The D-Link DAP-1325 suffers from a stack buffer overflow remote code...

8.8CVSS8.8AI score0.02499EPSS
Exploits0References2
OSV
OSVadded 2024/03/29 4:15 p.m.2 views

CVE-2024-30645

Tenda AC15V1.0 V15.03.20multi has a command injection vulnerability via the deviceName parameter...

8CVSS5.8AI score
Exploits0References1
NVD
NVDadded 2024/03/29 4:15 p.m.13 views

CVE-2024-30645

Tenda AC15V1.0 V15.03.20multi has a command injection vulnerability via the deviceName parameter...

8CVSS7.2AI score0.00248EPSS
Exploits0References1
CVE
CVEadded 2024/03/29 12:0 a.m.69 views

CVE-2024-30645

CVE-2024-30645 affects Tenda AC15V1.0 V15.03.20_multi. The vulnerability is a command injection via the deviceName parameter. CVSS v3.1 vector: AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H, base score 8.0 (HIGH). Potential impact includes confidentiality, integrity, and availability. Exploitation status i...

8CVSS7.5AI score0.00248EPSS
Exploits0References1Affected Software1
CNNVD
CNNVDadded 2024/03/29 12:0 a.m.1 views

Tenda AC15 安全漏洞

The Tenda AC15 is a wireless router from the Chinese company Tenda. A security vulnerability exists in Tenda AC15 version V15.03.20multi, which is caused by a command injection vulnerability in the deviceName parameter...

8CVSS7.7AI score0.00248EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2024/03/29 12:0 a.m.15 views

CVE-2024-30645

Tenda AC15V1.0 V15.03.20multi has a command injection vulnerability via the deviceName parameter...

7.5AI score0.00248EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2024/03/29 12:0 a.m.4 views

PT-2024-23542 · Tenda · Tenda Ac15

Name of the Vulnerable Software and Affected Versions: Tenda AC15V1.0 version V15.03.20 multi Description: The issue is related to a command injection vulnerability. This vulnerability can be exploited via the deviceName parameter. Recommendations: For Tenda AC15V1.0 version V15.03.20 multi, avoi...

8CVSS7.4AI score0.00248EPSS
Exploits0References3
NVD
NVDadded 2024/03/28 1:15 p.m.11 views

CVE-2024-30593

Tenda FH1202 v1.2.0.14408 has a stack overflow vulnerability located in the deviceName parameter of the formSetDeviceName function...

9.8CVSS7AI score0.00255EPSS
Exploits1References1
CVE
CVEadded 2024/03/28 12:0 a.m.80 views

CVE-2024-30593

The CVE-2024-30593 entry refers to a stack overflow in the Tenda FH1202 v1.2.0.14(408) where the deviceName parameter of the formSetDeviceName function can be overflowed. Public sources in the Connected documents confirm the vulnerability exists in the deviceName handling, with some references no...

9.8CVSS7.3AI score0.00255EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichmentadded 2024/03/28 12:0 a.m.15 views

CVE-2024-30593

Tenda FH1202 v1.2.0.14408 has a stack overflow vulnerability located in the deviceName parameter of the formSetDeviceName function...

7.3AI score0.00255EPSS
Exploits1References1
Cvelist
Cvelistadded 2024/03/28 12:0 a.m.10 views

CVE-2024-30593

Tenda FH1202 v1.2.0.14408 has a stack overflow vulnerability located in the deviceName parameter of the formSetDeviceName function...

7.2AI score0.00255EPSS
Exploits1References1
CNVD
CNVDadded 2024/03/27 12:0 a.m.1 views

Tenda AC18 formsetUsbUnload Method Command Injection Vulnerability

Tenda AC18 is a dual-band wireless router launched by Shenzhen Jixiang Tenda Technology Co. in July 2016, mainly for villas and large home users. Tenda AC18 suffers from a command injection vulnerability, which stems from a command injection vulnerability in the deviceName parameter of the...

9.8CVSS7.9AI score0.04421EPSS
Exploits1References1
OSV
OSVadded 2024/03/26 9:15 p.m.2 views

CVE-2024-28545

Tenda AC18 V15.03.05.05 contains a command injection vulnerablility in the deviceName parameter of formsetUsbUnload function...

9.8CVSS5.8AI score0.04421EPSS
Exploits1References1
NVD
NVDadded 2024/03/26 9:15 p.m.11 views

CVE-2024-28545

Tenda AC18 V15.03.05.05 contains a command injection vulnerablility in the deviceName parameter of formsetUsbUnload function...

9.8CVSS7.1AI score0.04421EPSS
Exploits1References1
CNNVD
CNNVDadded 2024/03/26 12:0 a.m.1 views

Tenda AC18 安全漏洞

Tenda AC18 is a dual-band wireless router launched by Shenzhen Jixiang Tenda Technology Co. in July 2016, mainly for villas and large home users. Tenda AC18 suffers from a command injection vulnerability, which stems from a command injection vulnerability in the deviceName parameter of the...

9.8CVSS7.8AI score0.04421EPSS
Exploits1References2
CVE
CVEadded 2024/03/26 12:0 a.m.61 views

CVE-2024-28545

CVE-2024-28545 describes a command injection vulnerability in the Tenda AC18 router (v15.03.05.05) where the flaw resides in the deviceName parameter of the formsetUsbUnload function. Connected sources consistently identify this issue for the affected device/model and root cause as a command inje...

9.8CVSS7.4AI score0.04421EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologiesadded 2024/03/26 12:0 a.m.2 views

PT-2024-22454 · Tenda · Tenda Ac18

Name of the Vulnerable Software and Affected Versions: Tenda AC18 version 15.03.05.05 Description: The issue concerns a command injection vulnerability. It is located in the deviceName parameter of the formsetUsbUnload function. Recommendations: For Tenda AC18 version 15.03.05.05, consider...

9.8CVSS7.4AI score0.04421EPSS
Exploits1References4
Rows per page
Query Builder