Lucene search
K

132 matches found

Positive Technologies
Positive Technologies
added 2024/03/26 12:0 a.m.6 views

PT-2024-2596 · Tenda · Tenda Ac7

Name of the Vulnerable Software and Affected Versions: Tenda AC7 version 15.03.06.44 Description: A critical issue has been discovered in the Tenda AC7, specifically in the function formSetCfm located in the "/goform/setcfm" file. This issue is caused by the manipulation of the funcpara1 argument...

9CVSS8.8AI score0.01684EPSS
Exploits1References8
CNNVD
CNNVD
added 2024/03/26 12:0 a.m.5 views

Tenda AC7 安全漏洞

Tenda AC7 is a 1200M dual-band wireless router designed for large households by Tenda Technology, which adopts the 802.11ac standard and supports dual-band concurrent transmission with a wireless rate of up to 1167Mbps. Tenda AC7 suffers from a buffer overflow vulnerability, which originates from...

9CVSS7.4AI score0.01684EPSS
Exploits1References5
BDU FSTEC
BDU FSTEC
added 2024/03/26 12:0 a.m.5 views

The vulnerability of the formSetCfm function (implemented by goform/setcfm) in the Tenda AC10U router software allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the formSetPPTPServer /goform/SetPptpServerCfg function in the Tenda AC10U router software is related to buffer overflow in the stack. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected...

9CVSS8AI score0.01544EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2024/03/21 9:15 p.m.5 views

CVE-2024-2763

A vulnerability, which was classified as critical, has been found in Tenda AC10U 15.03.06.48. Affected by this issue is the function formSetCfm of the file goform/setcfm. The manipulation of the argument funcpara1 leads to stack-based buffer overflow. The attack may be launched remotely. The...

8.8CVSS6.3AI score0.01544EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2024/03/21 12:0 a.m.10 views

PT-2024-2344 · Tenda · Tenda Ac10

Name of the Vulnerable Software and Affected Versions: Tenda AC10U version 15.03.06.48 Description: A critical issue has been found in the function formSetCfm of the file goform/setcfm, where the manipulation of the argument funcpara1 leads to a stack-based buffer overflow. This can be exploited...

9CVSS8.8AI score0.01544EPSS
Exploits1References10
Positive Technologies
Positive Technologies
added 2024/03/20 12:0 a.m.4 views

PT-2024-2470 · Tenda · Tenda Fh1205

Name of the Vulnerable Software and Affected Versions: Tenda FH1205 version 2.0.0.7775 Description: A critical issue affects the formSetCfm function of the /goform/setcfm file, where the manipulation of the funcpara1 argument leads to a stack-based buffer overflow. This can be exploited remotely,...

9CVSS8.8AI score0.01773EPSS
Exploits1References9
CNVD
CNVD
added 2024/01/31 12:0 a.m.9 views

Tenda i6 formSetCfm function buffer overflow vulnerability

Tenda i6 is a wireless access point from Tenda China. A buffer overflow vulnerability exists in Tenda i6 version 1.0.0.9, which originates from the funcpara1 parameter of the formSetCfm function in /goform/setcfm that fails to correctly validate the length of the input data, and can be exploited ...

9.8CVSS8.3AI score0.01659EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2024/01/30 12:0 a.m.6 views

The vulnerability of the formSetCfm() function in the httpd daemon of the wireless access points’ microprogramming software from Tenda i9, which allows a intruder to trigger a service failure.

The vulnerability of the formSetCfm function in the httpd daemon of the microprogrammed wireless access points from Tenda i9 is related to the operation that goes beyond the buffer in memory when processing the funcpara1 parameter. Exploiting this vulnerability could allow a malicious actor to...

9CVSS7.5AI score0.01551EPSS
Exploits1References3
BDU FSTEC
BDU FSTEC
added 2024/01/30 12:0 a.m.5 views

The vulnerability of the formSetCfm() function in the httpd daemon of the microprogramming software for wireless access points from Tenda W6, which allows a intruder to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the formSetCfm function in the httpd daemon of the microprogrammed wireless access points of Tenda W6 is related to the operation that goes beyond the buffer in memory when processing the funcpara1 parameter. Exploiting this vulnerability could allow an attacker to compromise...

9CVSS7.4AI score0.01659EPSS
Exploits1References3
BDU FSTEC
BDU FSTEC
added 2024/01/30 12:0 a.m.6 views

The vulnerability of the formSetCfm() function in the httpd daemon of the microprogramming software for wireless access points from Tenda i6 allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the formSetCfm function in the httpd daemon of the microprogrammed wireless access points from Tenda i6 is related to the operation that goes beyond the buffer in memory when processing the funcpara1 parameter. Exploiting this vulnerability could allow an attacker to compromi...

9CVSS7.4AI score0.01659EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2024/01/29 2:31 a.m.2 views

CVE-2024-0996 Tenda i9 httpd setcfm formSetCfm stack-based overflow

A vulnerability classified as critical has been found in Tenda i9 1.0.0.94122. This affects the function formSetCfm of the file /goform/setcfm of the component httpd. The manipulation of the argument funcpara1 leads to stack-based buffer overflow. It is possible to initiate the attack remotely. T...

8.3CVSS7.2AI score0.01551EPSS
Exploits1References3
OSV
OSV
added 2024/01/29 2:15 a.m.5 views

CVE-2024-0994

A vulnerability was found in Tenda W6 1.0.0.94122. It has been declared as critical. Affected by this vulnerability is the function formSetCfm of the file /goform/setcfm of the component httpd. The manipulation of the argument funcpara1 leads to stack-based buffer overflow. The attack can be...

9.8CVSS6.3AI score0.01659EPSS
Exploits1References3
Cvelist
Cvelist
added 2024/01/29 1:31 a.m.22 views

CVE-2024-0994 Tenda W6 httpd setcfm formSetCfm stack-based overflow

A vulnerability was found in Tenda W6 1.0.0.94122. It has been declared as critical. Affected by this vulnerability is the function formSetCfm of the file /goform/setcfm of the component httpd. The manipulation of the argument funcpara1 leads to stack-based buffer overflow. The attack can be...

8.3CVSS9.8AI score0.01659EPSS
Exploits1References3
OSV
OSV
added 2024/01/29 1:15 a.m.4 views

CVE-2024-0991

A vulnerability has been found in Tenda i6 1.0.0.93857 and classified as critical. This vulnerability affects the function formSetCfm of the file /goform/setcfm of the component httpd. The manipulation of the argument funcpara1 leads to stack-based buffer overflow. The attack can be initiated...

9.8CVSS6.5AI score0.01659EPSS
Exploits1References3
CNNVD
CNNVD
added 2024/01/29 12:0 a.m.2 views

Tenda i6 安全漏洞

Tenda i6 is a wireless access point from Tenda China. A buffer overflow vulnerability exists in Tenda i6 version 1.0.0.9, which originates from the funcpara1 parameter of the formSetCfm function in /goform/setcfm that fails to correctly validate the length of the input data, and can be exploited ...

9.8CVSS8.2AI score0.01659EPSS
Exploits1References4
CNNVD
CNNVD
added 2024/01/29 12:0 a.m.4 views

Tenda i9 Security Vulnerability

The Tenda i9 is a ceiling-mountable wireless access point from Tenda China. A security vulnerability exists in Tenda i9 version 1.0.0.9, which originates from a stack-based buffer overflow in the funcpara1 parameter of the formSetCfm function in /goform/setcfm...

9.8CVSS7.5AI score0.01551EPSS
Exploits1References4
NVD
NVD
added 2023/11/20 8:15 p.m.31 views

CVE-2023-38823

Buffer Overflow vulnerability in Tenda Ac19 v.1.0, AC18, AC9 v.1.0, AC6 v.2.0 and v.1.0 allows a remote attacker to execute arbitrary code via the formSetCfm function in bin/httpd...

9.8CVSS0.01203EPSS
Exploits3References1
OSV
OSV
added 2023/11/20 8:15 p.m.6 views

CVE-2023-38823

Buffer Overflow vulnerability in Tenda Ac19 v.1.0, AC18, AC9 v.1.0, AC6 v.2.0 and v.1.0 allows a remote attacker to execute arbitrary code via the formSetCfm function in bin/httpd...

9.8CVSS6.2AI score0.01203EPSS
Exploits3References1
Prion
Prion
added 2023/11/20 8:15 p.m.32 views

Buffer overflow

Buffer Overflow vulnerability in Tenda Ac19 v.1.0, AC18, AC9 v.1.0, AC6 v.2.0 and v.1.0 allows a remote attacker to execute arbitrary code via the formSetCfm function in bin/httpd...

7.5CVSS8.2AI score0.01203EPSS
Exploits3References1Affected Software4
CVE
CVE
added 2023/11/20 12:0 a.m.53 views

CVE-2023-38823

CVE-2023-38823 describes a Buffer Overflow in Tenda AC19 v1.0, AC18, AC9 v1.0, and AC6 v2.0/v1.0, caused by a vulnerable formSetCfm function in bin/httpd. A remote attacker can trigger arbitrary code execution via POST to /goform/setcfm by sending crafted name*/value* pairs (PoC shows constructin...

9.8CVSS9.6AI score0.01203EPSS
Exploits3References1Affected Software1
Rows per page
Query Builder