102 matches found
The vulnerability of the formexeCommand() function (/goform/execCommand) in the Tenda AC18 router’s microprogramming system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the formexeCommand function /goform/execCommand in the Tenda AC18 router’s microprogramming system lies in the issue of the operation exceeding the buffer boundaries in memory when processing the cmdinput parameter. Exploiting this vulnerability allows an attacker to compromi...
Tenda AC18 formexeCommand function buffer overflow vulnerability
The Tenda AC18 is a router from the Chinese company Tenda. Tenda AC18 V15.03.05.05 version of the buffer overflow vulnerability, the vulnerability stems from /goform/execCommand file formexeCommand function of the cmdinput parameter fails to correctly validate the length of the input data size, a...
CVE-2024-2558
A vulnerability was found in Tenda AC18 15.03.05.05. It has been rated as critical. This issue affects the function formexeCommand of the file /goform/execCommand. The manipulation of the argument cmdinput leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has...
Tenda AC18 Security Vulnerability
Tenda AC18 is a router from Tenda, China. A security vulnerability exists in Tenda AC18 version V15.03.05.05, which is caused by a stack-based buffer overflow in the cmdinput parameter of the formexeCommand function of the /goform/execCommand file...
The vulnerability of the formexeCommand function in the wireless access point software Tenda W9 allows a intruder to execute arbitrary code.
The vulnerability of the formexeCommand function in the Tenda W9 wireless access point software exists due to the failure to implement measures to neutralize special elements. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
CVE-2023-51099
Tenda W9 V1.0.0.74456CN was discovered to contain a command injection vulnerability via the function formexeCommand...
CVE-2023-51099
Tenda W9 V1.0.0.74456CN was discovered to contain a command injection vulnerability via the function formexeCommand...
Command injection
Tenda W9 V1.0.0.74456CN was discovered to contain a command injection vulnerability via the function formexeCommand...
CVE-2023-51099
Tenda W9 V1.0.0.74456CN was discovered to contain a command injection vulnerability via the function formexeCommand...
Tenda W9 Security Vulnerability
Tenda W9 is a wireless in-wall access point from Tenda, China. A security vulnerability exists in the Tenda W9 V1.0.0.74456CN version, which originates from a command injection vulnerability in the formexeCommand method...
PT-2023-8322 · Tenda · Tenda W9
Name of the Vulnerable Software and Affected Versions: Tenda W9 version 1.0.0.74456 CN Description: A command injection issue exists due to the lack of neutralization of special elements in the formexeCommand function. This could allow a remote attacker to execute arbitrary code. Recommendations:...
CVE-2022-40107
Tenda i9 v1.0.0.83828 was discovered to contain a buffer overflow via the formexeCommand function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted string...
CVE-2022-40100
Tenda i9 v1.0.0.83828 was discovered to contain a command injection vulnerability via the FormexeCommand function...
Command injection
Tenda i9 v1.0.0.83828 was discovered to contain a command injection vulnerability via the FormexeCommand function...
Buffer overflow
Tenda i9 v1.0.0.83828 was discovered to contain a buffer overflow via the formexeCommand function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted string...
CVE-2022-40100
Tenda i9 v1.0.0.83828 was discovered to contain a command injection vulnerability via the FormexeCommand function...
CVE-2022-40100
Tenda i9 v1.0.0.83828 was discovered to contain a command injection vulnerability via the FormexeCommand function...
CVE-2022-40100
The CVE-2022-40100 entry concerns Tenda i9, affected in version 1.0.0.8(3828). A command injection vulnerability exists in the FormexeCommand function. The issue is rated with an NV D/CVSS3.1 base score 9.8 (CRITICAL) , with network access required and no authentication/UI interaction, and potent...
Tenda i9 命令注入漏洞
Tenda i9 is a ceiling-mountable wireless access point from Tenda China. A security vulnerability exists in Tenda i9 v1.0.0.83828, which is caused by a command injection issue in the FormexeCommand method...
PT-2022-25210 · Tenda · Tenda I9
Name of the Vulnerable Software and Affected Versions: Tenda i9 version 1.0.0.83828 Description: A buffer overflow issue was discovered, allowing attackers to cause a Denial of Service DoS via a crafted string. The issue is related to the formexeCommand function. Recommendations: For Tenda i9...