Lucene search
+L

78 matches found

OSV
OSV
added 2026/03/08 11:15 a.m.3 views

CVE-2026-3732

A security vulnerability has been detected in Tenda F453 1.0.0.3. This affects the function strcpy of the file /goform/exeCommand. The manipulation of the argument cmdinput leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed publicl...

8.8CVSS6.4AI score0.00632EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2026/03/08 11:2 a.m.3 views

CVE-2026-3732 Tenda F453 exeCommand strcpy stack-based overflow

A security vulnerability has been detected in Tenda F453 1.0.0.3. This affects the function strcpy of the file /goform/exeCommand. The manipulation of the argument cmdinput leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed publicl...

9CVSS6.4AI score0.00632EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2026/03/08 11:2 a.m.3 views

CVE-2026-3732

A security vulnerability has been detected in Tenda F453 1.0.0.3. This affects the function strcpy of the file /goform/exeCommand. The manipulation of the argument cmdinput leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed publicl...

9CVSS6.4AI score0.00632EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2026/03/08 11:2 a.m.35 views

CVE-2026-3732 Tenda F453 exeCommand strcpy stack-based overflow

A security vulnerability has been detected in Tenda F453 1.0.0.3. This affects the function strcpy of the file /goform/exeCommand. The manipulation of the argument cmdinput leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed publicl...

9CVSS0.00632EPSS
Exploits1References5
CVE
CVE
added 2026/03/08 11:2 a.m.29 views

CVE-2026-3732

CVE-2026-3732 affects Tenda F453 1.0.0.3. The flaw is a stack-based buffer overflow in the function strcpy within the file /goform/exeCommand, caused by manipulation of the argument cmdinput. It is exploitable remotely and the exploit has been publicly disclosed. CVSS metrics indicate high impact...

9CVSS7.9AI score0.00632EPSS
Exploits1References5Affected Software1
Positive Technologies
Positive Technologies
added 2026/03/08 12:0 a.m.7 views

PT-2026-23937

Name of the Vulnerable Software and Affected Versions Tenda F453 version 1.0.0.3 Description A stack-based buffer overflow exists in the strcpy function within the /goform/exeCommand file of the Tenda F453 router. The issue is triggered by manipulating the cmdinput argument, potentially allowing...

9CVSS8.1AI score0.00632EPSS
Exploits1References16
CNNVD
CNNVD
added 2026/03/08 12:0 a.m.8 views

Tenda F453 安全漏洞

The Tenda F453 is a wireless router produced by the Chinese company Tenda. Version 1.0.0.3 of the Tenda F453 contains a security vulnerability. This vulnerability stems from incorrect handling of the parameter “cmdinput” in the file/goform/exeCommand, which may lead to a stack buffer overflow...

9CVSS7.7AI score0.00632EPSS
Exploits1References6
CNVD
CNVD
added 2026/01/06 12:0 a.m.5 views

Tenda M3 /goform/exeCommand File Stack Buffer Overflow Vulnerability

Tenda M3 is a wireless controller AC from Tenda, which is aimed at scenarios such as hotel chains, low-star hotels and small and medium-sized businesses. Tenda M3 has a stack buffer overflow vulnerability, the vulnerability stems from the wrong operation of the parameter cmdinput in the file...

9CVSS6.4AI score0.00632EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/12/31 3:7 p.m.6 views

CVE-2025-15253

A vulnerability has been found in Tenda M3 1.0.0.134903. The impacted element is an unknown function of the file /goform/exeCommand. Such manipulation of the argument cmdinput leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public a...

9CVSS7.1AI score0.00632EPSS
Exploits1References1
NVD
NVD
added 2025/12/30 3:15 p.m.7 views

CVE-2025-15253

A vulnerability has been found in Tenda M3 1.0.0.134903. The impacted element is an unknown function of the file /goform/exeCommand. Such manipulation of the argument cmdinput leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public a...

9CVSS0.00632EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/12/30 3:2 p.m.6 views

CVE-2025-15253 Tenda M3 exeCommand stack-based overflow

A vulnerability has been found in Tenda M3 1.0.0.134903. The impacted element is an unknown function of the file /goform/exeCommand. Such manipulation of the argument cmdinput leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public a...

9CVSS7AI score0.00632EPSS
Exploits1References5
CVE
CVE
added 2025/12/30 3:2 p.m.35 views

CVE-2025-15253

The CVE-2025-15253 issue affects Tenda M3 (version 1.0.0.13(4903)) via an unknown function in /goform/exeCommand where improper handling of the cmdinput parameter causes a stack-based overflow. Multiple connected sources (CNVD-2026-06098, RH:CVE-2025-15253, CNNVD-202512-5119, CVELIST/CVE-2025-152...

9CVSS7AI score0.00632EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2025/12/30 3:2 p.m.32 views

CVE-2025-15253 Tenda M3 exeCommand stack-based overflow

A vulnerability has been found in Tenda M3 1.0.0.134903. The impacted element is an unknown function of the file /goform/exeCommand. Such manipulation of the argument cmdinput leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public a...

9CVSS0.00632EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/12/30 12:0 a.m.4 views

Tenda M3 安全漏洞

Tenda M3 is a wireless controller AC from Tenda, which is aimed at scenarios such as hotel chains, low-star hotels and small and medium-sized businesses. Tenda M3 has a stack buffer overflow vulnerability, the vulnerability stems from the wrong operation of the parameter cmdinput in the file...

9CVSS7.7AI score0.00632EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/09/17 11:36 a.m.4 views

CVE-2025-10442

A vulnerability was determined in Tenda AC9 and AC15 15.03.05.14. This affects the function formexeCommand of the file /goform/exeCommand. This manipulation of the argument cmdinput causes os command injection. Remote exploitation of the attack is possible. The exploit has been publicly disclosed...

8.8CVSS7.1AI score0.08317EPSS
Exploits1References1
OSV
OSV
added 2025/09/15 12:15 p.m.4 views

CVE-2025-10443

A vulnerability was identified in Tenda AC9 and AC15 15.03.05.14/15.03.05.18. This vulnerability affects the function formexeCommand of the file /goform/exeCommand. Such manipulation of the argument cmdinput leads to buffer overflow. The attack can be executed remotely. The exploit is publicly...

8.7CVSS6.4AI score0.03706EPSS
Exploits1References6
Vulnrichment
Vulnrichment
added 2025/09/15 11:32 a.m.2 views

CVE-2025-10443 Tenda AC9/AC15 exeCommand formexeCommand buffer overflow

A vulnerability was identified in Tenda AC9 and AC15 15.03.05.14/15.03.05.18. This vulnerability affects the function formexeCommand of the file /goform/exeCommand. Such manipulation of the argument cmdinput leads to buffer overflow. The attack can be executed remotely. The exploit is publicly...

9CVSS7AI score0.03706EPSS
Exploits1References6
CVE
CVE
added 2025/09/15 11:32 a.m.29 views

CVE-2025-10443

The CVE-2025-10443 entry concerns Tenda AC9/AC15 devices (firmware versions 15.03.05.14 and 15.03.05.18) with a vulnerability in the function formexeCommand in /goform/exeCommand. The issue arises from improper handling of the cmdinput parameter, leading to a buffer overflow. Exploitation can be ...

9CVSS7AI score0.03706EPSS
Exploits1References6Affected Software1
OSV
OSV
added 2025/09/15 11:15 a.m.7 views

CVE-2025-10442

A vulnerability was determined in Tenda AC9 and AC15 15.03.05.14. This affects the function formexeCommand of the file /goform/exeCommand. This manipulation of the argument cmdinput causes os command injection. Remote exploitation of the attack is possible. The exploit has been publicly disclosed...

8.8CVSS5.8AI score0.08317EPSS
Exploits1References7
NVD
NVD
added 2025/09/15 11:15 a.m.9 views

CVE-2025-10442

A vulnerability was determined in Tenda AC9 and AC15 15.03.05.14. This affects the function formexeCommand of the file /goform/exeCommand. This manipulation of the argument cmdinput causes os command injection. Remote exploitation of the attack is possible. The exploit has been publicly disclosed...

8.8CVSS0.08317EPSS
Exploits1References7
Rows per page
Query Builder