59 matches found
EUVD-2022-48568
Malicious code in bioql PyPI...
EUVD-2022-46406
Malicious code in bioql PyPI...
EUVD-2022-48569
Malicious code in bioql PyPI...
EUVD-2024-49030
Malicious code in bioql PyPI...
Tenda G3 formSetDebugCfg function stack buffer overflow vulnerability
Tenda G3 is a Qos Vpn router from Tenda China. A stack buffer overflow vulnerability exists in the Tenda G3 formSetDebugCfg function, which can be exploited by an attacker to cause a denial of service DoS via a specially crafted request...
CVE-2025-57058
Tenda G3 v3.0brV15.11.0.17 was discovered to contain multiple stack overflows in the formSetDebugCfg function via the pEnable, pLevel, and pModule parameters. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...
CVE-2025-57058
Tenda G3 v3.0brV15.11.0.17 was discovered to contain multiple stack overflows in the formSetDebugCfg function via the pEnable, pLevel, and pModule parameters. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...
CVE-2025-57058
Tenda G3 v3.0brV15.11.0.17 was discovered to contain multiple stack overflows in the formSetDebugCfg function via the pEnable, pLevel, and pModule parameters. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...
PT-2025-36785
Name of the Vulnerable Software and Affected Versions: Tenda G3 version 3.0br V15.11.0.17 Description: The Tenda G3 version 3.0br V15.11.0.17 contains multiple stack overflows in the formSetDebugCfg function. These overflows occur via the pEnable, pLevel, and pModule parameters. Successful...
Tenda G3 安全漏洞
Tenda G3 is a Qos Vpn router from Tenda China. A stack buffer overflow vulnerability exists in the Tenda G3 formSetDebugCfg function, which can be exploited by an attacker to cause a denial of service DoS via a specially crafted request...
CVE-2025-57058
Affected software: Tenda G3 (v3.0br_V15.11.0.17). Vulnerability: stack overflow in the formSetDebugCfg function, exploitable via the pEnable, pLevel, and pModule parameters. Impact: Denial of Service (DoS) via a crafted request. Notes: Multiple connected documents confirm the function and paramet...
CVE-2024-50853
Tenda G3 v3.0 v15.11.0.20 was discovered to contain a command injection vulnerability via the formSetDebugCfg function...
CVE-2022-43367
IP-COM EW9 V15.11.0.149732 was discovered to contain a command injection vulnerability in the formSetDebugCfg function...
CVE-2022-45709
IP-COM M50 V15.11.0.3310768 was discovered to contain multiple command injection vulnerabilities via the pEnable, pLevel, and pModule parameters in the formSetDebugCfg function...
CVE-2022-45710
IP-COM M50 V15.11.0.3310768 was discovered to contain multiple buffer overflows via the pEnable, pLevel, and pModule parameters in the formSetDebugCfg function...
Tenda W20E formSetDebugCfg function enable parameter command injection vulnerability
The Tenda W20E is a router from the Chinese company Tenda. The Tenda W20E suffers from a command injection vulnerability that stems from the formSetDebugCfg function enable parameter failing to properly filter construct command special characters, commands, and so on. No detailed vulnerability...
Tenda W20E formSetDebugCfg function module parameter command injection vulnerability
The Tenda W20E is a router from the Chinese company Tenda. The Tenda W20E suffers from a command injection vulnerability that stems from the failure of the formSetDebugCfg function module parameter to properly filter constructor command special characters, commands, etc. The vulnerability is caus...
Tenda W20E formSetDebugCfg function level parameter command injection vulnerability
The Tenda W20E is a router from the Chinese company Tenda. The Tenda W20 suffers from a command injection vulnerability that stems from the formSetDebugCfg function level parameter failing to properly filter construct command special characters, commands, and so on. No details of the vulnerabilit...
CVE-2025-44866
Tenda W20E V15.11.0.6 was found to contain a command injection vulnerability in the formSetDebugCfg function via the level parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request...
CVE-2025-44865
Tenda W20E V15.11.0.6 was found to contain a command injection vulnerability in the formSetDebugCfg function via the enable parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request...