103 matches found
CVE-2022-46544
Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the cmdinput parameter at /goform/exeCommand...
Tenda F1203 安全漏洞
The Tenda F1203 is a wireless router from China-based Tenda. A security vulnerability exists in Tenda F1203 version 2.0.1.6, which originates from a buffer overflow vulnerability in the cmdinput parameter at /goform/exeCommand...
PT-2022-27898 · Tenda · Tenda F1203
Name of the Vulnerable Software and Affected Versions: Tenda F1203 version 2.0.1.6 Description: A buffer overflow issue was discovered via the cmdinput parameter at the "/goform/exeCommand" API endpoint. Recommendations: For Tenda F1203 version 2.0.1.6, consider restricting access to the...
CVE-2022-45497
Tenda W6-S v1.0.0.4510 was discovered to contain a command injection vulnerability in the tpigetpingoutput function at /goform/exeCommand...
CVE-2022-45497
Tenda W6-S v1.0.0.4510 was discovered to contain a command injection vulnerability in the tpigetpingoutput function at /goform/exeCommand...
CVE-2022-45505
Tenda W30E V1.0.1.25633 was discovered to contain a stack overflow via the cmdinput parameter at /goform/exeCommand...
Stack overflow
Tenda W30E V1.0.1.25633 was discovered to contain a stack overflow via the cmdinput parameter at /goform/exeCommand...
CVE-2022-45505
Tenda W30E V1.0.1.25633 was discovered to contain a stack overflow via the cmdinput parameter at /goform/exeCommand...
PT-2022-27541 · Tenda · Tenda W6-S
Name of the Vulnerable Software and Affected Versions: Tenda W6-S version 1.0.0.4510 Description: A command injection issue was found in the tpi get ping output function at the "/goform/exeCommand" API endpoint. Recommendations: For Tenda W6-S version 1.0.0.4510, consider disabling the tpi get pi...
Tenda W30E 缓冲区错误漏洞
Tenda W30E is a router from Tenda China. A security vulnerability exists in the Tenda W30E version V1.0.1.25633, which originates from a stack overflow contained in the cmdinput parameter via /goform/exeCommand...
CVE-2022-35555
A command injection vulnerability exists in /goform/exeCommand in Tenda W6 V1.0.0.94122, which allows attackers to construct cmdinput parameters for arbitrary command execution...
CVE-2022-35555
A command injection vulnerability exists in /goform/exeCommand in Tenda W6 V1.0.0.94122, which allows attackers to construct cmdinput parameters for arbitrary command execution...
PT-2022-22900 · Tenda · Tenda W6
Name of the Vulnerable Software and Affected Versions: Tenda W6 version 1.0.0.94122 Description: A command injection issue exists in the "/goform/exeCommand" API endpoint, allowing attackers to construct cmdinput parameters for arbitrary command execution. Recommendations: For Tenda W6 version...
CVE-2022-26289
Tenda M3 1.10 V1.0.0.124856 was discovered to contain a command injection vulnerability via the component /goform/exeCommand...
CVE-2022-26289
Tenda M3 1.10 V1.0.0.124856 was discovered to contain a command injection vulnerability via the component /goform/exeCommand...
Command injection
Tenda M3 1.10 V1.0.0.124856 was discovered to contain a command injection vulnerability via the component /goform/exeCommand...
CVE-2022-26289
Tenda M3 1.10 V1.0.0.124856 was discovered to contain a command injection vulnerability via the component /goform/exeCommand...
Tenda M3 操作系统命令注入漏洞
Tenda M3 is an access control from Tenda, a Chinese company. Tenda M3 has a command injection vulnerability, which originates from the component /goform/exeCommand fails to properly filter the construction of command special characters, commands, etc., which can be exploited by attackers to cause...
CVE-2022-25458
Tenda AC6 v15.03.05.09multi was discovered to contain a stack overflow via the cmdinput parameter in the exeCommand function...
CVE-2022-25458
Tenda AC6 v15.03.05.09multi was discovered to contain a stack overflow via the cmdinput parameter in the exeCommand function...