CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CNVD•added 2025/10/13 12:0 a.m.•3 views

Tenda CH22 formWrlsafeset function stack buffer overflow vulnerability

Tenda CH22 is an enterprise-grade wireless router from Tenda. Tenda CH22 has a stack buffer overflow vulnerability, which originates from the parameter mitssidindex in the formWrlsafeset function in file /goform/AdvSetWrlsafeset that fails to correctly validate the length of the input data, which...

10CVSS8.4AI score0.06192EPSS

CNNVD•added 2025/10/13 12:0 a.m.•7 views

UTT 518G 安全漏洞

The UTT 518G is an enterprise router from China Aitai UTT. A security vulnerability exists in the UTT 518G V3v3.2.7-210919-161313 and prior versions, which stems from incorrect manipulation of the parameter Profile in the file /goform/formRemoteControl, which could result in a buffer overflow...

9CVSS8.9AI score0.00755EPSS

Exploits1References6

CNVD•added 2025/09/11 12:0 a.m.•5 views

UTT 1200GW Buffer Overflow Vulnerability

The UTT 1200GW is an enterprise-grade wireless router from Atech Technology UTT designed to meet the networking needs of small to medium-sized businesses or large space office environments. The UTT 1200GW suffers from a buffer overflow vulnerability that originates from the sub4B48F8 function in...

9CVSS8.2AI score0.00995EPSS

CNVD•added 2025/09/05 12:0 a.m.•3 views

D-Link DI-8400 yyxz.asp File Stack Buffer Overflow Vulnerability

The D-Link DI-8400 is an enterprise-class Internet behavior management router from D-Link for medium to large enterprise network environments. The D-Link DI-8400 suffers from a stack buffer overflow vulnerability that originates from a stack-based buffer overflow in the parameter ID of the functi...

9CVSS7.7AI score0.01395EPSS

CNVD•added 2025/08/20 12:0 a.m.•4 views

Tenda CH22 Buffer Overflow Vulnerability

The Tenda CH22 is an enterprise-grade wireless router from the Tenda brand. Tenda CH22 suffers from a buffer overflow vulnerability, which originates from the failure of the formdelFileName function in the file /goform/delFileName to properly validate the length and size of the input data, which...

9CVSS8.4AI score0.00895EPSS

CNNVD•added 2025/07/26 12:0 a.m.•4 views

D-Link DI-8400 安全漏洞

D-Link DI-8400 is an Internet Behavior Management router from D-Link designed for medium to large enterprise network environments, supporting 360 users with parallel access and full Gigabit port configuration. The D-Link DI-8400 suffers from a null pointer dereference vulnerability that originate...

7.5CVSS6.8AI score0.0149EPSS

Exploits1References6

CNVD•added 2025/07/08 12:0 a.m.•4 views

UTT Progressive 750W Unauthenticated Password Change Vulnerability

The UTT Progress 750W is an enterprise-grade dual-band wireless router from Atech Technology UTT, which is aimed at SMB network environments. The UTT Progress 750W suffers from an unauthenticated password change vulnerability, which originates from an unauthenticated password change due to...

9.8CVSS7.2AI score0.00577EPSS

CNNVD•added 2025/06/20 12:0 a.m.•3 views

H3C多款产品安全漏洞

H3C ER2200G2 and others are products of China's Xinhua San H3C.H3C ER2200G2 is an enterprise router.H3C ERG2-450W is a wireless router.H3C ERG2-1200W is a wireless router. A security vulnerability exists in various H3C products that stems from authentication bypass and could lead to remote comman...

9.8CVSS7.2AI score0.00959EPSS

CNNVD•added 2025/04/22 12:0 a.m.•4 views

H3C GR-3000AX 安全漏洞

The H3C GR-3000AX is an enterprise-grade Wi-Fi 6 wireless router from China's Xinhua San H3C. A security vulnerability exists in H3C GR-3000AX V100R006 and prior versions, which originates from a buffer overflow due to improper handling of the parameter param in multiple functions in...

8.6CVSS8.2AI score0.0049EPSS

Exploits0References6

CNNVD•added 2024/11/20 12:0 a.m.•3 views

H3C GR-1800AX 安全漏洞

The H3C GR-1800AX is an enterprise-class wireless router from China's Xinhua San H3C. The H3C GR-1800AX suffers from a code execution vulnerability that stems from the presence of a remote code execution RCE vulnerability. No detailed vulnerability details are available at this time...

9.8CVSS8.1AI score0.11208EPSS

CNNVD•added 2024/11/04 12:0 a.m.•4 views

DrayTek Vigor 3900 安全漏洞

DrayTek Vigor 3900 is a high performance router for enterprise networks from China DrayTek. A security vulnerability exists in the DrayTek Vigor 3900 version 1.5.1.3. An attacker can exploit this vulnerability to perform a command injection attack...

8CVSS7.3AI score0.02081EPSS

CNNVD•added 2024/11/04 12:0 a.m.•5 views

DrayTek Vigor 3900 安全漏洞

8CVSS7.3AI score0.01594EPSS

CNNVD•added 2024/11/04 12:0 a.m.•5 views

DrayTek Vigor 3900 安全漏洞

8CVSS7.3AI score0.01291EPSS

CNNVD•added 2024/11/04 12:0 a.m.•4 views

DrayTek Vigor 3900 安全漏洞

8CVSS7.3AI score0.01977EPSS

CNVD•added 2024/10/14 12:0 a.m.•3 views

D-Link DI_8200 Command Injection Vulnerability

The D-Link DI8200 is an enterprise router from China's AUO D-Link. The D-Link DI8200 suffers from a command injection vulnerability that originates from manipulation of the parameter path in the file upgradefilter.asp. No details of the vulnerability are provided at this time...

8.8CVSS7AI score0.03019EPSS

CNNVD•added 2024/10/11 12:0 a.m.•6 views

D-Link DI_8200 安全漏洞

8.8CVSS7.5AI score0.03019EPSS

Exploits0References3

CNVD•added 2024/09/20 12:0 a.m.•7 views

DrayTek Vigor 3910 Buffer Overflow Vulnerability (CNVD-2024-39950)

The DrayTek Vigor 3910 is a high performance router for enterprise networks from DrayTek. A buffer overflow vulnerability exists in the DrayTek Vigor 3910 v4.3.2.6, which is caused by the sPPPSrvNm parameter on the fwuser.cgi page not properly validating the length of the input data, and can be...

7.5CVSS7.2AI score0.00424EPSS

CNVD•added 2024/09/20 12:0 a.m.•9 views

DrayTek Vigor 3910 Buffer Overflow Vulnerability (CNVD-2024-39952)

The DrayTek Vigor 3910 is a high performance router for enterprise networks from DrayTek. A buffer overflow vulnerability exists in the DrayTek Vigor 3910 v4.3.2.6, which originates from the sBPAUsrNme parameter in the inet15.cgi page that fails to correctly validate the length of the input data,...

7.5CVSS7.2AI score0.00523EPSS