CVE-2026-10192

A vulnerability was identified in Tenda W12 3.0.0.74763. The affected element is the function setlocaltime0 of the file /bin/httpd. Such manipulation of the argument Time leads to stack-based buffer overflow. The attack can be launched remotely. The exploit is publicly available and might be used...

EUVD-2026-33514

A vulnerability was identified in Tenda W12 3.0.0.74763. The affected element is the function setlocaltime0 of the file /bin/httpd. Such manipulation of the argument Time leads to stack-based buffer overflow. The attack can be launched remotely. The exploit is publicly available and might be used...

CVE-2026-10188 Tenda W12 httpd cgistaKickOff stack-based overflow

A flaw has been found in Tenda W12 3.0.0.74763. This affects the function cgistaKickOff of the file /bin/httpd. Executing a manipulation of the argument staMac can lead to stack-based buffer overflow. The attack may be performed from remote. The exploit has been published and may be used...

CVE-2026-39455

When the BIG-IP Configuration utility is configured to use Lightweight Directory Access Protocol LDAP authentication, undisclosed traffic can cause the httpd process to exhaust the available file descriptors. Note: Software versions which have reached End of Technical Support EoTS are not...

K000160874: BIG-IP Configuration utility vulnerability CVE-2026-39455

Security Advisory Description When the BIG-IP Configuration utility is configured to use Lightweight Directory Access Protocol LDAP authentication, undisclosed traffic can cause the httpd process to exhaust the available file descriptors. CVE-2026-39455 Impact The Configuration utility stops...

PT-2026-40640

Name of the Vulnerable Software and Affected Versions F5 BIG-IP versions prior to 17.1.3.2 F5 BIG-IP versions prior to 17.5.1.6 F5 BIG-IP versions prior to 21.0.0.2 Description When the BIG-IP Configuration utility is configured to use Lightweight Directory Access Protocol LDAP authentication,...

D-Link M60 License Issue Vulnerability

The D-Link M60 is a wireless routing device from China-based D-Link. An authorization issue vulnerability exists in D-Link M60 version 1.20B02 and prior versions, which stems from a weak password recovery issue in the file /usr/bin/httpd, and can be exploited by an attacker to cause...

D-Link M60 授权问题漏洞

The D-Link M60 is a wireless routing device from China-based D-Link. An authorization issue vulnerability exists in D-Link M60 version 1.20B02 and prior versions, which stems from a weak password recovery issue in the file /usr/bin/httpd, and can be exploited by an attacker to cause...

CVE-2026-5526

A security flaw has been discovered in Tenda 4G03 Pro up to 1.0/1.1/04.03.01.53/192.168.0.1. Affected by this vulnerability is an unknown functionality of the file /bin/httpd. The manipulation results in improper access controls. The attack may be performed from remote. The exploit has been...

CVE-2026-5526 Tenda 4G03 Pro httpd access control

A security flaw has been discovered in Tenda 4G03 Pro up to 1.0/1.1/04.03.01.53/192.168.0.1. Affected by this vulnerability is an unknown functionality of the file /bin/httpd. The manipulation results in improper access controls. The attack may be performed from remote. The exploit has been...

EUVD-2025-30902

Malicious code in bioql PyPI...

Tenda AC9 安全漏洞

Tenda AC9 is a wireless router from Tenda China. A security vulnerability exists in Tenda AC9 version 1.0, which originates from the improper handling of the usb.samba.guest.user parameter in the formSetSambaConf function in the httpd file, which may lead to OS command injection...

Tenda W12/i24 Stack Overflow Vulnerability

The Tenda W12 and i24 is a wireless router made by Tenda. A stack overflow vulnerability exists in Tenda W12 and i24. The vulnerability originates from the function cgiPingSet in the /bin/httpd file.No detailed vulnerability details are available at this time...

PT-2024-9689 · D Link · D-Link Dap-2555

Name of the Vulnerable Software and Affected Versions: D-Link DAP-2555 version REVA FIRMWARE 1.20 Description: A buffer overflow vulnerability in the D-Link DAP-2555 allows remote attackers to cause a Denial of Service DoS via a crafted HTTP request. The issue is related to the /sbin/httpd file a...

PT-2023-12621 · Unknown · Cetic-6Lbr

Name of the Vulnerable Software and Affected Versions: CETIC-6LBR aka 6lbr version 1.5.0 Description: The issue is a strcat stack-based buffer overflow that occurs when a request for a long URL is made over a 6LoWPAN network. This can be exploited via the httpd.c file in the...

SUSE CVE-2007-6682

Format string vulnerability in the httpdFileCallBack function network/httpd.c in VideoLAN VLC 0.8.6d allows remote attackers to execute arbitrary code via format string specifiers in the Connection parameter...

Tenda AC1206 setSchedWifi function sched_start_time buffer overflow vulnerability

The AC1206 is a high performance router designed with Gigabit ports for both WAN and LAN ports. A buffer overflow vulnerability exists in Tenda AC1206 firmware version USAC1206V1.0RTLV15.03.06.23multiTD01, which originates from the schedstarttime parameter in the setSchedWifi function of the...

Tenda AC1206 fromSysToolRestoreSet Function Cross-Site Request Forgery Vulnerability

The AC1206 is a high performance router designed with Gigabit ports for both WAN and LAN ports. Tenda AC1206 firmware version USAC1206V1.0RTLV15.03.06.23multiTD01 has a cross-site request forgery vulnerability in the /bin/httpd file in the fromSysToolRestoreSet function /goform/ SysToolRestoreSet...

CVE-2007-6682

Format string vulnerability in the httpdFileCallBack function network/httpd.c in VideoLAN VLC 0.8.6d allows remote attackers to execute arbitrary code via format string specifiers in the Connection parameter...