MiracleLinux 8 : python39:3.9 and python39-devel:3.9 (AXSA:2022-2905:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-2905:01 advisory. python: Information disclosure via pydoc CVE-2021-3426 python: urllib: Regular expression DoS in AbstractBasicAuthHandler CVE-2021-3733 python-lxml:...

CVE-2025-15048

A vulnerability was determined in Tenda WH450 1.0.0.18. This impacts an unknown function of the file /goform/CheckTools of the component HTTP Request Handler. Executing a manipulation of the argument ipaddress can lead to command injection. The attack can be launched remotely. The exploit has bee...

CVE-2025-15006

CVE-2025-15006 affects Tenda WH450 1.0.0.18. The vulnerability stems from the HTTP Request Handler in /goform/CheckTools, where manipulating the ipaddress argument triggers a stack-based buffer overflow. It is remotely exploitable and, per multiple sources, the public PoC/exploit is available. Af...

EUVD-2025-175304

A stack buffer overflow vulnerability exists in the ToToLink LR1200GB V9.1.0u.6619B20230130 and NR1800X V9.1.0u.6681B20230703 Router firmware within the cstecgi.cgi binary setDefResponse function. The binary reads the "IpAddress" parameter from a web request and copies it into a fixed-size stack...