CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

98 matches found

EUVD•added 2026/03/12 2:2 a.m.•1 views

EUVD-2026-11513

A vulnerability was identified in Tenda W3 1.0.0.32204. This vulnerability affects the function formexeCommand of the file /goform/exeCommand of the component HTTP Handler. Such manipulation of the argument cmdinput leads to stack-based buffer overflow. The attack may be performed from remote. Th...

9CVSS6.4AI score0.00106EPSS

Exploits1References5

CVE•added 2026/03/12 2:2 a.m.•3 views

CVE-2026-3974

CVE-2026-3974 affects Tenda W3 1.0.0.3(2204). The vulnerability is in the HTTP Handler function formexeCommand of the /goform/exeCommand component, where manipulation of the cmdinput argument causes a stack-based buffer overflow. This can potentially be exploited remotely, and an exploit is publi...

9CVSS6.4AI score0.00106EPSS

Exploits1References5Affected Software1

Cvelist•added 2026/03/12 2:2 a.m.•21 views

CVE-2026-3974 Tenda W3 HTTP exeCommand formexeCommand stack-based overflow

9CVSS0.00106EPSS

Exploits1References5

Positive Technologies•added 2026/03/12 12:0 a.m.•0 views

PT-2026-24914

9CVSS6.4AI score0.00106EPSS

Exploits1References6

EUVD•added 2026/03/09 6:31 a.m.•2 views

EUVD-2026-10296

A vulnerability was determined in Tenda i3 1.0.0.62204. Affected by this issue is the function formexeCommand of the file /goform/exeCommand. Executing a manipulation of the argument cmdinput can lead to stack-based buffer overflow. The attack may be performed from remote. The exploit has been...

9CVSS6.3AI score0.00106EPSS

Exploits1References6

NVD•added 2026/03/09 5:15 a.m.•1 views

CVE-2026-3802

9CVSS0.00106EPSS

Exploits1References5

Vulnrichment•added 2026/03/09 4:32 a.m.•0 views

CVE-2026-3802 Tenda i3 exeCommand formexeCommand stack-based overflow

9CVSS6.3AI score0.00106EPSS

Exploits1References5

CVE•added 2026/03/09 4:32 a.m.•5 views

CVE-2026-3802

CVE-2026-3802 affects Tenda i3 firmware 1.0.0.6(2204). The vulnerable element is the function formexeCommand in the file /goform/exeCommand . Manipulating the argument cmdinput can cause a stack-based buffer overflow. The issue is exploitable remotely over the network, with exploit code publicly ...

9CVSS7.9AI score0.00106EPSS

Exploits1References5Affected Software1

CNNVD•added 2026/03/09 12:0 a.m.•2 views

Tenda i3 安全漏洞

The Tenda i3 is a wireless access point device produced by the Chinese company Tenda. Version 1.0.0.62204 of the Tenda i3 contains a security vulnerability. This vulnerability stems from incorrect handling of the cmdinput parameter in the function formexeCommand within the file /goform/exeCommand...

9CVSS7.7AI score0.00106EPSS

Exploits1References6

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2022-43419

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.02983EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•0 views

EUVD-2022-43426

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.00391EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-4109

Malicious code in bioql PyPI...

9.8CVSS6.5AI score0.00179EPSS

Exploits1References2

RedhatCVE•added 2025/09/17 11:36 a.m.•1 views

CVE-2025-10443

A vulnerability was identified in Tenda AC9 and AC15 15.03.05.14/15.03.05.18. This vulnerability affects the function formexeCommand of the file /goform/exeCommand. Such manipulation of the argument cmdinput leads to buffer overflow. The attack can be executed remotely. The exploit is publicly...

9CVSS7.2AI score0.00601EPSS

Exploits1References1

Vulnrichment•added 2025/09/15 11:32 a.m.•1 views

CVE-2025-10443 Tenda AC9/AC15 exeCommand formexeCommand buffer overflow

9CVSS7AI score0.00601EPSS

Exploits1References6

OSV•added 2025/09/15 11:15 a.m.•1 views

CVE-2025-10442

A vulnerability was determined in Tenda AC9 and AC15 15.03.05.14. This affects the function formexeCommand of the file /goform/exeCommand. This manipulation of the argument cmdinput causes os command injection. Remote exploitation of the attack is possible. The exploit has been publicly disclosed...

8.8CVSS5.8AI score0.01128EPSS

Exploits1References7

CVE•added 2025/09/15 11:2 a.m.•10 views

CVE-2025-10442

CVE-2025-10442 affects Tenda AC9 and AC15 with firmware 15.03.05.14. The vulnerability is in the function formexeCommand of /goform/exeCommand, where unsanitized cmdinput leads to OS command injection. Remote exploitation is possible and the exploit has been publicly disclosed. Affected devices c...

8.8CVSS6.6AI score0.01128EPSS

Exploits1References7Affected Software1

RedhatCVE•added 2025/05/23 10:33 a.m.•5 views

CVE-2024-46049

Tenda O6 V3.0 firmware V1.0.0.72054 contains a stack overflow vulnerability in the formexeCommand function...

9.8CVSS7.4AI score0.00132EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 10:16 a.m.•5 views

CVE-2024-32314

Tenda AC500 V2.0.1.91307 firmware contains a command injection vulnerablility in the formexeCommand function via the cmdinput parameter...

3.8CVSS7.6AI score0.00702EPSS

Exploits1References1