59 matches found
CVE-2022-45710
CVE-2022-45710 affects IP-COM M50 router (V15.11.0.33(10768)). Multiple buffer overflows occur via the pEnable, pLevel, and pModule parameters in the formSetDebugCfg function. Exploitation details are not provided in the documents; the vulnerability is described as buffer overflows, with a high i...
IP-COM M50 操作系统命令注入漏洞
The IP-COM M50 is a wireless router from IP-COM USA. A security vulnerability exists in IP-COM M50 version V15.11.0.3310768, which originates from the discovery of multiple command injection vulnerabilities contained via the pEnable, pLevel, and pModule parameters in the formSetDebugCfg function...
IP-COM M50 安全漏洞
The IP-COM M50 is a wireless router from IP-COM USA. A security vulnerability exists in IP-COM M50 version V15.11.0.3310768, which stems from the discovery of multiple buffer overflow vulnerabilities contained via the pEnable, pLevel, pModule parameters in the formSetDebugCfg function...
CVE-2022-45710
IP-COM M50 V15.11.0.3310768 was discovered to contain multiple buffer overflows via the pEnable, pLevel, and pModule parameters in the formSetDebugCfg function...
PT-2022-27624 · Ip Com · Ip-Com M50
Name of the Vulnerable Software and Affected Versions: IP-COM M50 version 15.11.0.3310768 Description: The issue is related to multiple buffer overflows that can occur via the pEnable, pLevel, and pModule parameters in the formSetDebugCfg function. This can potentially allow for exploitation...
CVE-2022-45709
IP-COM M50 V15.11.0.3310768 was discovered to contain multiple command injection vulnerabilities via the pEnable, pLevel, and pModule parameters in the formSetDebugCfg function...
CVE-2022-43365
IP-COM EW9 V15.11.0.149732 was discovered to contain a buffer overflow in the formSetDebugCfg function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted string...
CVE-2022-43367
IP-COM EW9 V15.11.0.149732 was discovered to contain a command injection vulnerability in the formSetDebugCfg function...
Command injection
IP-COM EW9 V15.11.0.149732 was discovered to contain a command injection vulnerability in the formSetDebugCfg function...
Buffer overflow
IP-COM EW9 V15.11.0.149732 was discovered to contain a buffer overflow in the formSetDebugCfg function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted string...
IP-COM EW9 命令注入漏洞
The IP-COM EW9 is a wireless router from IP-COM. A security vulnerability exists in the IP-COM EW9 version V15.11.0.149732 that stems from a command injection vulnerability contained in the formSetDebugCfg function...
CVE-2022-43367
IP-COM EW9 V15.11.0.149732 was discovered to contain a command injection vulnerability in the formSetDebugCfg function...
CVE-2022-43367
IP-COM EW9 V15.11.0.149732 was discovered to contain a command injection vulnerability in the formSetDebugCfg function...
Tenda W20E formSetDebugCfg Stack Overflow Vulnerability
The Tenda W20E is a router from the Chinese company Tenda. A stack overflow vulnerability exists in Tenda W20E version V15.11.0.6, which stems from the formSetDebugCfg method not size-checking the input data with a request to /goform/setDebugCfg/, which can be exploited by an attacker to cause a...
CVE-2022-40866
Tenda W20E router V15.11.0.6 USW20EV4.0brV15.11.0.610681546841CNTDC contains a stack overflow vulnerability in the function formSetDebugCfg with request /goform/setDebugCfg/...
Stack overflow
Tenda W20E router V15.11.0.6 USW20EV4.0brV15.11.0.610681546841CNTDC contains a stack overflow vulnerability in the function formSetDebugCfg with request /goform/setDebugCfg/...
CVE-2022-40866
The CVE-2022-40866 entry pertains to the Tenda W20E router (version V15.11.0.6). A stack overflow vulnerability exists in the formSetDebugCfg function triggered by the request to /goform/setDebugCfg/. Public sources indicate the issue stems from insufficient input size checks, enabling potential ...
PT-2022-25591 · Tenda · Tenda W20E
Name of the Vulnerable Software and Affected Versions: Tenda W20E router version 15.11.0.6 Description: The issue is a stack overflow vulnerability in the formSetDebugCfg function, which is triggered by the request "/goform/setDebugCfg/". This vulnerability can be exploited, but details about the...
CVE-2021-27691
Command Injection in Tenda G0 routers with firmware versions v15.11.0.69039CN and v15.11.0.55876CN , and Tenda G1 and G3 routers with firmware versions v15.11.0.179502CN or v15.11.0.169024CN allows remote attackers to execute arbitrary OS commands via a crafted action/setDebugCfg request. This...