Lucene search
K

93 matches found

RedhatCVE
RedhatCVE
added 2025/08/12 11:11 p.m.11 views

CVE-2025-8818

A vulnerability has been found in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 20250801. Affected by this issue is the function setDFSSetting of the file /goform/setLan. The manipulation of the argument lanNetmask/lanIp leads to os command injection. The attack may be launched...

8.8CVSS7.6AI score0.07659EPSS
Exploits1References1
NVD
NVD
added 2025/08/10 11:15 p.m.4 views

CVE-2025-8818

A vulnerability has been found in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 20250801. Affected by this issue is the function setDFSSetting of the file /goform/setLan. The manipulation of the argument lanNetmask/lanIp leads to os command injection. The attack may be launched...

8.8CVSS0.07659EPSS
Exploits1References6
OSV
OSV
added 2025/08/10 11:15 p.m.4 views

CVE-2025-8818

A vulnerability has been found in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 20250801. Affected by this issue is the function setDFSSetting of the file /goform/setLan. The manipulation of the argument lanNetmask/lanIp leads to os command injection. The attack may be launched...

8.8CVSS5.5AI score
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/05/23 5:0 a.m.11 views

CVE-2023-51017

TOTOlink EX1800T v9.1.0cu.2112B20220316 is vulnerable to unauthorized arbitrary command execution in the lanIp parameter’ of the setLanConfig interface of the cstecgi .cgi...

9.8CVSS7.2AI score0.0097EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/23 3:31 a.m.11 views

CVE-2023-27240

Tenda AX3 V16.03.12.11 was discovered to contain a command injection vulnerability via the lanip parameter at /goform/AdvSetLanip...

9.8CVSS7.9AI score0.02773EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:17 a.m.6 views

CVE-2023-27806

H3C Magic R100 R100V100R005.bin was discovered to contain a stack overflow via the ipqoslanipdellist interface at /goform/aspForm. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted payload...

4.9CVSS7.3AI score0.00787EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 1:16 a.m.8 views

CVE-2022-29321

D-Link DIR-816 A2v1.10CNB04 was discovered to contain a stack overflow via the lanip parameter in /goform/setNetworkLan...

10CVSS7.9AI score0.03802EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:52 p.m.7 views

CVE-2022-32054

Tenda AC10 USAC10V1.0RTLV15.03.06.26multiTD01 was discovered to contain a remote code execution RCE vulnerability via the lanIp parameter...

10CVSS8.4AI score0.31729EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:43 p.m.7 views

CVE-2022-28917

Tenda AX12 v22.03.01.21cn was discovered to contain a stack overflow via the lanIp parameter in /goform/AdvSetLanIp...

7.8CVSS7.9AI score0.09285EPSS
Exploits1References1
OSV
OSV
added 2024/12/04 11:30 a.m.4 views

CVE-2024-52272

Stack-based Buffer Overflow vulnerability in Shenzhen Tenda Technology Co Tenda AC6V2 fromAdvSetLanipoverflow arg:lanMask modules allows Overflow Buffers.This issue affects Tenda AC6V2: through 15.03.06.50...

9.8CVSS5.8AI score0.00437EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/12/04 12:0 a.m.3 views

Tenda AC6 安全漏洞

Tenda AC6 is a wireless router from Shenzhen Tenda Technology Co. A buffer overflow vulnerability exists in Tenda AC6. The vulnerability stems from improper handling of the lanMask parameter in the fromAdvSetLanip module. No detailed vulnerability details are provided at this time...

9.8CVSS7.5AI score0.00437EPSS
Exploits0References1
VulnCheck KEV
VulnCheck KEV
added 2024/02/22 12:0 a.m.3 views

VulnCheck KEV: CVE-2020-15916

goform/AdvSetLanip endpoint on Tenda AC15 AC1900 15.03.05.19 devices allows remote attackers to execute arbitrary system commands via shell metacharacters in the lanIp POST parameter...

10CVSS7.6AI score0.03429EPSS
Exploits1References1
CNVD
CNVD
added 2024/01/03 12:0 a.m.9 views

TOTOLINK EX1800T lanIp Parameter Command Execution Vulnerability

The TOTOLINK EX1800T is a Wi-Fi range extender from China's Gion Electronics TOTOLINK. A command execution vulnerability exists in the TOTOLINK EX1800T lanIp parameter. The vulnerability stems from the failure of the lanIp parameter of the setLanConfig interface of cstecgi .cgi to properly filter...

9.8CVSS7.7AI score0.0097EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2023/12/22 7:15 p.m.4 views

CVE-2023-51017

TOTOlink EX1800T v9.1.0cu.2112B20220316 is vulnerable to unauthorized arbitrary command execution in the lanIp parameter’ of the setLanConfig interface of the cstecgi .cgi...

9.8CVSS6.1AI score0.0097EPSS
Exploits1References2
OSV
OSV
added 2023/12/22 7:15 p.m.4 views

CVE-2023-51017

TOTOlink EX1800T v9.1.0cu.2112B20220316 is vulnerable to unauthorized arbitrary command execution in the lanIp parameter’ of the setLanConfig interface of the cstecgi .cgi...

9.8CVSS6AI score
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/12/22 12:0 a.m.6 views

PT-2023-31732 · Totolink · Totolink Ex1800T

Name of the Vulnerable Software and Affected Versions: TOTOlink EX1800T version 9.1.0cu.2112 B20220316 Description: The issue allows for unauthorized arbitrary command execution. This is possible through the lanIp parameter of the setLanConfig interface in the cstecgi.cgi endpoint. Recommendation...

9.8CVSS9.5AI score0.0097EPSS
Exploits1References2
CNNVD
CNNVD
added 2023/12/22 12:0 a.m.5 views

TOTOLINK EX1800T 安全漏洞

The TOTOLINK EX1800T is a Wi-Fi range extender from China's Gion Electronics TOTOLINK. A command execution vulnerability exists in the TOTOLINK EX1800T lanIp parameter. The vulnerability stems from the failure of the lanIp parameter of the setLanConfig interface of cstecgi .cgi to properly filter...

9.8CVSS7.8AI score0.0097EPSS
Exploits1References2
Cvelist
Cvelist
added 2023/12/22 12:0 a.m.27 views

CVE-2023-51017

TOTOlink EX1800T v9.1.0cu.2112B20220316 is vulnerable to unauthorized arbitrary command execution in the lanIp parameter’ of the setLanConfig interface of the cstecgi .cgi...

9.7AI score0.0097EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2023/05/31 9:15 p.m.6 views

CVE-2023-33636

H3C Magic R300 version R300-2100MV100R004 was discovered to contain a stack overflow via the ipqoslanipeditlist interface at /goform/aspForm...

7.2CVSS7.1AI score0.00933EPSS
Exploits0References3
OSV
OSV
added 2023/05/31 9:15 p.m.4 views

CVE-2023-33636

H3C Magic R300 version R300-2100MV100R004 was discovered to contain a stack overflow via the ipqoslanipeditlist interface at /goform/aspForm...

7.2CVSS5.8AI score0.00933EPSS
Exploits0References1
Rows per page
Query Builder