CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

30 matches found

OSV•added 2024/03/27 2:15 p.m.•0 views

CVE-2024-2978

A vulnerability classified as critical has been found in Tenda F1203 2.0.1.6. This affects the function formSetCfm of the file /goform/setcfm. The manipulation of the argument funcpara1 leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been...

8.8CVSS6.2AI score

Exploits0References4

Positive Technologies•added 2024/03/27 12:0 a.m.•1 views

PT-2024-23142 · Tenda · Tenda F1203

Name of the Vulnerable Software and Affected Versions: Tenda FH1203 version 2.0.1.6 Description: A critical issue affects the function formSetCfm of the file /goform/setcfm. The manipulation of the argument funcpara1 leads to stack-based buffer overflow. The attack may be initiated remotely...

9CVSS8.9AI score0.00489EPSS

Exploits1References7

CNVD•added 2024/01/31 12:0 a.m.•8 views

Tenda i6 formSetCfm function buffer overflow vulnerability

Tenda i6 is a wireless access point from Tenda China. A buffer overflow vulnerability exists in Tenda i6 version 1.0.0.9, which originates from the funcpara1 parameter of the formSetCfm function in /goform/setcfm that fails to correctly validate the length of the input data, and can be exploited ...

9.8CVSS8.3AI score0.00095EPSS

Exploits1References1

Vulnrichment•added 2024/01/29 2:31 a.m.•2 views

CVE-2024-0996 Tenda i9 httpd setcfm formSetCfm stack-based overflow

A vulnerability classified as critical has been found in Tenda i9 1.0.0.94122. This affects the function formSetCfm of the file /goform/setcfm of the component httpd. The manipulation of the argument funcpara1 leads to stack-based buffer overflow. It is possible to initiate the attack remotely. T...

8.3CVSS7.2AI score0.00093EPSS

Exploits1References3

OSV•added 2024/01/29 1:15 a.m.•1 views

CVE-2024-0991

A vulnerability has been found in Tenda i6 1.0.0.93857 and classified as critical. This vulnerability affects the function formSetCfm of the file /goform/setcfm of the component httpd. The manipulation of the argument funcpara1 leads to stack-based buffer overflow. The attack can be initiated...

9.8CVSS6.5AI score0.00095EPSS

Exploits1References3

NVD•added 2023/11/20 8:15 p.m.•14 views

CVE-2023-38823

Buffer Overflow vulnerability in Tenda Ac19 v.1.0, AC18, AC9 v.1.0, AC6 v.2.0 and v.1.0 allows a remote attacker to execute arbitrary code via the formSetCfm function in bin/httpd...

9.8CVSS0.04064EPSS

Exploits3References1

Prion•added 2023/11/20 8:15 p.m.•21 views

Buffer overflow

Buffer Overflow vulnerability in Tenda Ac19 v.1.0, AC18, AC9 v.1.0, AC6 v.2.0 and v.1.0 allows a remote attacker to execute arbitrary code via the formSetCfm function in bin/httpd...

7.5CVSS8.2AI score0.04064EPSS

Exploits3References1Affected Software4

CVE•added 2023/11/20 12:0 a.m.•43 views

CVE-2023-38823

CVE-2023-38823 describes a Buffer Overflow in Tenda AC19 v1.0, AC18, AC9 v1.0, and AC6 v2.0/v1.0, caused by a vulnerable formSetCfm function in bin/httpd. A remote attacker can trigger arbitrary code execution via POST to /goform/setcfm by sending crafted name*/value* pairs (PoC shows constructin...

9.8CVSS9.6AI score0.04064EPSS

Exploits3References1Affected Software1

Prion•added 2022/12/20 3:15 p.m.•16 views

Buffer overflow

Tenda i22 V1.0.0.34687 was discovered to contain a buffer overflow via the funcpara1 parameter in the formSetCfm function...

5CVSS7.8AI score0.00336EPSS

Exploits1References1Affected Software1