57 matches found
CVE-2025-12260 TOTOLINK A3300R POST Parameter cstecgi.cgi setSyslogCfg stack-based overflow
A vulnerability has been found in TOTOLINK A3300R 17.0.0cu.557B20221024. The impacted element is the function setSyslogCfg of the file /cgi-bin/cstecgi.cgi of the component POST Parameter Handler. Such manipulation of the argument enable leads to stack-based buffer overflow. It is possible to...
Linux Distros Unpatched Vulnerability : CVE-2022-45693
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Jettison before v1.5.2 was discovered to contain a stack overflow via the map parameter. This vulnerability allows attackers to cause a Denial of Service DoS vi...
CLSA-2025-1753124055 libsoup: Fix of 7 CVEs
CVE-2025-32050: fix overflow in appendparamquoted - CVE-2025-32052: fix heap buffer overflow in soupcontentsniffersniff - CVE-2025-32053: fix heap buffer overflow in snifffeedorhtml - CVE-2025-32907: soup-message-headers: correct merge of ranges - CVE-2025-46420: fix leak in...
The vulnerability of the fromSysToolTime() function (/goform/setSysTimeInfo) in the Tenda O3 wireless access point software allows a attacker to execute arbitrary code or cause a service failure.
The vulnerability of the fromSysToolTime function /goform/setSysTimeInfo in the Tenda O3 wireless access point software lies in the fact that the operation may escape out of the buffer in memory when processing the Time parameter. Exploiting this vulnerability could allow a malicious actor to...
CVE-2021-35395
Realtek Jungle SDK version v2.x up to v3.4.14B provides an HTTP web server exposing a management interface that can be used to configure the access point. Two versions of this management interface exists: one based on Go-Ahead named webs and another based on Boa named boa. Both of them are affect...
DEBIAN-CVE-2025-32050
A flaw was found in libsoup. The libsoup appendparamquoted function may contain an overflow bug resulting in a buffer under-read...
The vulnerability of the formModifyDnsForward() function in Tenda W15E router microprogramming software allows a hacker to execute arbitrary code or cause a service failure.
The vulnerability of the formModifyDnsForward function in the Tenda W15E router’s microprogramming software is related to the issue of the operation going beyond the buffer in memory when processing the DNSDomainName parameter. Exploiting this vulnerability allows a remote attacker to execute...
CVE-2024-42955
Tenda FH1201 v1.2.0.14 408 was discovered to contain a stack overflow via the page parameter in the fromSafeClientFilter function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted POST request...
Tenda O3 安全漏洞
Tenda O3 is an outdoor wireless bridge from Tenda, China. The Tenda O3 suffers from a buffer overflow vulnerability that originates from the parameter time failing to correctly validate the length and size of input data, which can be exploited by an attacker to execute arbitrary code on the syste...
CVE-2024-30592
Tenda FH1202 v1.2.0.14408 has a stack overflow vulnerability in the page parameter of the fromAddressNat function...
CVE-2024-28553
Tenda AC18 V15.03.05.05 has a stack overflow vulnerability in the entrys parameter fromAddressNat function...
CVE-2023-38938
Tenda F1202 V1.2.0.9, PA202 V1.1.2.5, PW201A V1.1.2.5 and FH1202 V1.2.0.9 were discovered to contain a stack overflow via the page parameter at /L7Im...
CVE-2023-37702
Tenda FH1203 V2.0.1.6 was discovered to contain a stack overflow via the deviceId parameter in the formSetDeviceName function...
CVE-2023-34942
Asus RT-N10LX Router v2.0.0.39 was discovered to contain a stack overflow via the mac parameter at /start-apply.html. NOTE: This vulnerability only affects products that are no longer supported by the maintainer...
CVE-2023-34566
Tenda AC10 v4 USAC10V4.0siV16.03.10.13cn was discovered to contain a stack overflow via parameter time at /goform/saveParentControlInfo...
Stack overflow
Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the security5g parameter at /goform/WifiBasicSet...
CVE-2022-46551
Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the time parameter at /goform/saveParentControlInfo...
UBUNTU-CVE-2022-45693
Jettison before v1.5.2 was discovered to contain a stack overflow via the map parameter. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted string...
Denial of Service on the LPDA.sol contract due to incorrect validation of parameters.
Lines of code Vulnerability details Impact The impact is that the contract will be on Denial Of Service, not allowing anyone to get ether out, neither the creator or people via refund. Proof of Concept The functions buyuint256 amount and refund of the LPDA.sol contract both call the function...
H3C Magic R200 缓冲区错误漏洞
H3C Magic R200 is a router from China New Huasan H3C.A security vulnerability exists in the H3C Magic R200 R200V200R004L02 version, which stems from the HOST parameter of doping.asp that was found to contain a stack overflow. No details of the vulnerability are currently available...