CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedhatCVE•added 2026/03/26 2:58 p.m.•0 views

CVE-2026-4041

A security flaw has been discovered in Tenda i12 1.0.0.62204. Impacted is the function vosstrcpy of the file /goform/exeCommand. The manipulation of the argument cmdinput results in stack-based buffer overflow. The attack can be launched remotely. The exploit has been released to the public and m...

9CVSS6.5AI score0.00106EPSS

EUVD•added 2026/03/12 3:30 p.m.•1 views

EUVD-2026-11587

Vulnrichment•added 2026/03/12 3:2 p.m.•0 views

Exploits1References6

CVE-2026-4041 Tenda i12 exeCommand vos_strcpy stack-based overflow

ATTACKERKB•added 2026/03/12 3:2 p.m.•0 views

CVE-2026-4041

Exploits1References5Affected Software1

CVE•added 2026/03/12 3:2 p.m.•4 views

CVE-2026-4041

CVE-2026-4041 affects Tenda i12 (firmware 1.0.0.6(2204)). The vulnerability is in the vos_strcpy function of /goform/exeCommand, where an input cmdinput can cause a stack-based buffer overflow. Impact is high (confidentiality, integrity, availability), with remote exploitation possible and no use...

Exploits1References5Affected Software1

Cvelist•added 2026/03/12 3:2 p.m.•21 views

CVE-2026-4041 Tenda i12 exeCommand vos_strcpy stack-based overflow

9CVSS0.00106EPSS

NVD•added 2026/03/12 3:15 a.m.•1 views

CVE-2026-3974

9CVSS0.00106EPSS

EUVD•added 2026/03/12 2:2 a.m.•1 views

EUVD-2026-11513

ATTACKERKB•added 2026/03/12 2:2 a.m.•1 views

CVE-2026-3974

Exploits1References5Affected Software1

Vulnrichment•added 2026/03/12 2:2 a.m.•0 views

CVE-2026-3974 Tenda W3 HTTP exeCommand formexeCommand stack-based overflow

9CVSS8AI score0.00106EPSS

CNNVD•added 2026/03/12 12:0 a.m.•3 views

Tenda i12 安全漏洞

The Tenda i12 is a ceiling-mounted wireless access point produced by the Chinese company Tenda. Version 1.0.0.62204 of the Tenda i12 contains a security vulnerability. This vulnerability stems from an incorrect operation of the parameter cmdinput in the vosstrcpy function within the...

9CVSS7.7AI score0.00106EPSS

Positive Technologies•added 2026/03/12 12:0 a.m.•1 views

PT-2026-24959

A security flaw has been discovered in Tenda i12 1.0.0.62204. Impacted is the function vos strcpy of the file /goform/exeCommand. The manipulation of the argument cmdinput results in stack-based buffer overflow. The attack can be launched remotely. The exploit has been released to the public and...

CNNVD•added 2026/03/12 12:0 a.m.•2 views

Exploits1References8

Tenda W3 安全漏洞

Tenda W3 is a wireless access point device produced by the Chinese company Tenda. Version 1.0.0.32204 of Tenda W3 contains a security vulnerability. This vulnerability stems from incorrect handling of the parameter “cmdinput” in the file/goform/exeCommand, which may lead to a stack buffer overflo...

9CVSS7.7AI score0.00106EPSS

RedhatCVE•added 2026/03/10 8:10 a.m.•1 views

CVE-2026-3802

A vulnerability was determined in Tenda i3 1.0.0.62204. Affected by this issue is the function formexeCommand of the file /goform/exeCommand. Executing a manipulation of the argument cmdinput can lead to stack-based buffer overflow. The attack may be performed from remote. The exploit has been...

9CVSS7.9AI score0.00106EPSS

RedhatCVE•added 2026/03/09 1:59 p.m.•0 views

CVE-2026-3732

A security vulnerability has been detected in Tenda F453 1.0.0.3. This affects the function strcpy of the file /goform/exeCommand. The manipulation of the argument cmdinput leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed publicl...