Lucene search
K

57 matches found

Vulnrichment
Vulnrichment
added 2025/10/27 10:2 a.m.4 views

CVE-2025-12260 TOTOLINK A3300R POST Parameter cstecgi.cgi setSyslogCfg stack-based overflow

A vulnerability has been found in TOTOLINK A3300R 17.0.0cu.557B20221024. The impacted element is the function setSyslogCfg of the file /cgi-bin/cstecgi.cgi of the component POST Parameter Handler. Such manipulation of the argument enable leads to stack-based buffer overflow. It is possible to...

9CVSS8.9AI score0.0093EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2025/08/20 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2022-45693

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Jettison before v1.5.2 was discovered to contain a stack overflow via the map parameter. This vulnerability allows attackers to cause a Denial of Service DoS vi...

7.5CVSS6.6AI score0.01395EPSS
Exploits1References2
OSV
OSV
added 2025/07/21 6:54 p.m.9 views

CLSA-2025-1753124055 libsoup: Fix of 7 CVEs

CVE-2025-32050: fix overflow in appendparamquoted - CVE-2025-32052: fix heap buffer overflow in soupcontentsniffersniff - CVE-2025-32053: fix heap buffer overflow in snifffeedorhtml - CVE-2025-32907: soup-message-headers: correct merge of ranges - CVE-2025-46420: fix leak in...

7CVSS6AI score0.00786EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2025/07/21 12:0 a.m.4 views

The vulnerability of the fromSysToolTime() function (/goform/setSysTimeInfo) in the Tenda O3 wireless access point software allows a attacker to execute arbitrary code or cause a service failure.

The vulnerability of the fromSysToolTime function /goform/setSysTimeInfo in the Tenda O3 wireless access point software lies in the fact that the operation may escape out of the buffer in memory when processing the Time parameter. Exploiting this vulnerability could allow a malicious actor to...

9CVSS8.3AI score0.00761EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/05/22 8:37 p.m.3 views

CVE-2021-35395

Realtek Jungle SDK version v2.x up to v3.4.14B provides an HTTP web server exposing a management interface that can be used to configure the access point. Two versions of this management interface exists: one based on Go-Ahead named webs and another based on Boa named boa. Both of them are affect...

10CVSS8AI score0.981EPSS
Exploits1References1
OSV
OSV
added 2025/04/03 2:15 p.m.1 views

DEBIAN-CVE-2025-32050

A flaw was found in libsoup. The libsoup appendparamquoted function may contain an overflow bug resulting in a buffer under-read...

5.9CVSS7.2AI score0.00714EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/03/27 12:0 a.m.6 views

The vulnerability of the formModifyDnsForward() function in Tenda W15E router microprogramming software allows a hacker to execute arbitrary code or cause a service failure.

The vulnerability of the formModifyDnsForward function in the Tenda W15E router’s microprogramming software is related to the issue of the operation going beyond the buffer in memory when processing the DNSDomainName parameter. Exploiting this vulnerability allows a remote attacker to execute...

10CVSS8.4AI score0.0102EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2024/08/15 5:15 p.m.3 views

CVE-2024-42955

Tenda FH1201 v1.2.0.14 408 was discovered to contain a stack overflow via the page parameter in the fromSafeClientFilter function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted POST request...

7.5CVSS5.9AI score0.00558EPSS
Exploits1References1
CNNVD
CNNVD
added 2024/07/27 12:0 a.m.5 views

Tenda O3 安全漏洞

Tenda O3 is an outdoor wireless bridge from Tenda, China. The Tenda O3 suffers from a buffer overflow vulnerability that originates from the parameter time failing to correctly validate the length and size of input data, which can be exploited by an attacker to execute arbitrary code on the syste...

9CVSS8.2AI score0.01286EPSS
Exploits1References5
OSV
OSV
added 2024/03/28 2:15 p.m.4 views

CVE-2024-30592

Tenda FH1202 v1.2.0.14408 has a stack overflow vulnerability in the page parameter of the fromAddressNat function...

8CVSS5.8AI score0.00689EPSS
Exploits1References1
OSV
OSV
added 2024/03/12 1:15 p.m.3 views

CVE-2024-28553

Tenda AC18 V15.03.05.05 has a stack overflow vulnerability in the entrys parameter fromAddressNat function...

9.8CVSS5.8AI score0.00775EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2023/08/07 7:15 p.m.5 views

CVE-2023-38938

Tenda F1202 V1.2.0.9, PA202 V1.1.2.5, PW201A V1.1.2.5 and FH1202 V1.2.0.9 were discovered to contain a stack overflow via the page parameter at /L7Im...

9.8CVSS7.4AI score0.00701EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2023/07/10 5:15 p.m.5 views

CVE-2023-37702

Tenda FH1203 V2.0.1.6 was discovered to contain a stack overflow via the deviceId parameter in the formSetDeviceName function...

9.8CVSS7.4AI score0.00937EPSS
Exploits1References2
OSV
OSV
added 2023/06/12 8:15 p.m.4 views

CVE-2023-34942

Asus RT-N10LX Router v2.0.0.39 was discovered to contain a stack overflow via the mac parameter at /start-apply.html. NOTE: This vulnerability only affects products that are no longer supported by the maintainer...

7.5CVSS5.8AI score0.00744EPSS
Exploits1References1
OSV
OSV
added 2023/06/08 3:15 p.m.4 views

CVE-2023-34566

Tenda AC10 v4 USAC10V4.0siV16.03.10.13cn was discovered to contain a stack overflow via parameter time at /goform/saveParentControlInfo...

9.8CVSS5.9AI score0.00935EPSS
Exploits0References1
Prion
Prion
added 2022/12/30 9:15 p.m.19 views

Stack overflow

Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the security5g parameter at /goform/WifiBasicSet...

7.5CVSS9.6AI score0.00873EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2022/12/20 3:15 p.m.5 views

CVE-2022-46551

Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the time parameter at /goform/saveParentControlInfo...

7.5CVSS6.2AI score0.00815EPSS
Exploits1References1
OSV
OSV
added 2022/12/13 3:15 p.m.3 views

UBUNTU-CVE-2022-45693

Jettison before v1.5.2 was discovered to contain a stack overflow via the map parameter. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted string...

7.5CVSS6.8AI score0.01395EPSS
Exploits1References4
Code423n4
Code423n4
added 2022/12/09 12:0 a.m.9 views

Denial of Service on the LPDA.sol contract due to incorrect validation of parameters.

Lines of code Vulnerability details Impact The impact is that the contract will be on Denial Of Service, not allowing anyone to get ether out, neither the creator or people via refund. Proof of Concept The functions buyuint256 amount and refund of the LPDA.sol contract both call the function...

6.7AI score
Exploits0
CNNVD
CNNVD
added 2022/07/20 12:0 a.m.4 views

H3C Magic R200 缓冲区错误漏洞

H3C Magic R200 is a router from China New Huasan H3C.A security vulnerability exists in the H3C Magic R200 R200V200R004L02 version, which stems from the HOST parameter of doping.asp that was found to contain a stack overflow. No details of the vulnerability are currently available...

9.8CVSS5.8AI score0.12275EPSS
Exploits1References2
Rows per page
Query Builder