Lucene search
K

10 matches found

OSV
OSV
added 2026/06/09 8:28 p.m.12 views

MAL-2026-5474 Malicious code in getui-library (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bf281a31a53827497d9a24ff0602f277b568f495a00c14603c3e9bf11a30327a On npm install, postinstall.js issues an HTTPS GET to https://webhook.site/18dc4281-d366-438a-9186-76fbcd56ade5 with query parameters containing the...

5.4AI score
Exploits0References1
CNVD
CNVD
added 2025/11/05 12:0 a.m.3 views

Tenda AC10 Buffer Overflow Vulnerability

Tenda AC10 is a wireless router product from Tenda. A buffer overflow vulnerability exists in Tenda AC10 version 16.03.10.13, which originates from the mishandling of the getui parameter in the formSysRunCmd function in the /goform/SysRunCmd file. The vulnerability can be exploited to trigger a...

9.8CVSS9.3AI score0.00831EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/04 7:51 a.m.11 views

CVE-2025-12622

A vulnerability was determined in Tenda AC10 16.03.10.13. Affected by this vulnerability is the function formSysRunCmd of the file /goform/SysRunCmd. This manipulation of the argument getui causes buffer overflow. The attack may be initiated remotely. The exploit has been publicly disclosed and m...

9.8CVSS9.1AI score0.00831EPSS
Exploits0References1
OSV
OSV
added 2025/11/03 8:15 a.m.4 views

CVE-2025-12622

A vulnerability was determined in Tenda AC10 16.03.10.13. Affected by this vulnerability is the function formSysRunCmd of the file /goform/SysRunCmd. This manipulation of the argument getui causes buffer overflow. The attack may be initiated remotely. The exploit has been publicly disclosed and m...

9.8CVSS6.3AI score0.00831EPSS
Exploits0References6
NVD
NVD
added 2025/11/03 8:15 a.m.4 views

CVE-2025-12622

A vulnerability was determined in Tenda AC10 16.03.10.13. Affected by this vulnerability is the function formSysRunCmd of the file /goform/SysRunCmd. This manipulation of the argument getui causes buffer overflow. The attack may be initiated remotely. The exploit has been publicly disclosed and m...

9.8CVSS0.00831EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2025/11/03 7:32 a.m.3 views

CVE-2025-12622 Tenda AC10 SysRunCmd formSysRunCmd buffer overflow

A vulnerability was determined in Tenda AC10 16.03.10.13. Affected by this vulnerability is the function formSysRunCmd of the file /goform/SysRunCmd. This manipulation of the argument getui causes buffer overflow. The attack may be initiated remotely. The exploit has been publicly disclosed and m...

9CVSS7.1AI score0.00831EPSS
Exploits0References6
EUVD
EUVD
added 2025/11/03 7:32 a.m.8 views

EUVD-2025-37475

A vulnerability was determined in Tenda AC10 16.03.10.13. Affected by this vulnerability is the function formSysRunCmd of the file /goform/SysRunCmd. This manipulation of the argument getui causes buffer overflow. The attack may be initiated remotely. The exploit has been publicly disclosed and m...

9CVSS9AI score0.00831EPSS
Exploits0References7
CVE
CVE
added 2025/11/03 7:32 a.m.19 views

CVE-2025-12622

CVE-2025-12622 affects Tenda AC10 firmware 16.03.10.13. The issue is in the function formSysRunCmd in the file /goform/SysRunCmd , where manipulation of the getui parameter triggers a buffer overflow . Exploitation can be performed remotely, and multiple sources confirm a publicly disclosed explo...

9.8CVSS9AI score0.00831EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2025/11/03 7:32 a.m.12 views

CVE-2025-12622 Tenda AC10 SysRunCmd formSysRunCmd buffer overflow

A vulnerability was determined in Tenda AC10 16.03.10.13. Affected by this vulnerability is the function formSysRunCmd of the file /goform/SysRunCmd. This manipulation of the argument getui causes buffer overflow. The attack may be initiated remotely. The exploit has been publicly disclosed and m...

9CVSS0.00831EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/11/03 12:0 a.m.8 views

PT-2025-44754

Name of the Vulnerable Software and Affected Versions Tenda AC10 version 16.03.10.13 Description A flaw exists in the formSysRunCmd function within the /goform/SysRunCmd file. Manipulation of the getui argument can lead to a buffer overflow. This issue can be exploited remotely. The exploit for...

9.8CVSS7AI score0.00831EPSS
Exploits0References12
Rows per page
Query Builder