EUVD-2026-17050

A security flaw has been discovered in Totolink A3300R 17.0.0cu.557b20221024. This vulnerability affects the function setSmartQosCfg of the file /cgi-bin/cstecgi.cgi of the component Parameter Handler. The manipulation of the argument qosupbw results in command injection. The attack can be execut...

CVE-2024-32287

Tenda W30E v1.0 V1.0.1.25633 firmware has a stack overflow vulnerability via the qos parameter in the fromqossetting function...

CVE-2024-42977

Tenda FH1206 v02.03.01.35 was discovered to contain a stack overflow via the qos parameter in the fromqossetting function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted POST request...

CVE-2024-42949

Tenda FH1201 v1.2.0.14 408 was discovered to contain a stack overflow via the qos parameter in the fromqossetting function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted POST request...

CVE-2024-42977

Tenda FH1206 v02.03.01.35 was discovered to contain a stack overflow via the qos parameter in the fromqossetting function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted POST request...

CVE-2024-42977

Tenda FH1206 v02.03.01.35 was discovered to contain a stack overflow via the qos parameter in the fromqossetting function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted POST request...

CVE-2024-42949

Tenda FH1201 v1.2.0.14 408 was discovered to contain a stack overflow via the qos parameter in the fromqossetting function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted POST request...

PT-2024-30220 · Tenda · Tenda Fh1201

Name of the Vulnerable Software and Affected Versions: Tenda FH1201 version 1.2.0.14 Description: The issue is related to a stack overflow via the qos parameter in the fromqossetting function, allowing attackers to cause a Denial of Service DoS via a crafted POST request to the affected API...

Tenda FH1206 安全漏洞

Tenda FH1206 is a dual-band wireless router from Tenda, designed for large homes with fiber optics. The Tenda FH1206 suffers from a buffer overflow vulnerability that originates from a buffer overflow vulnerability in the qos parameter of the fromqossetting function, which can be exploited by an...

CVE-2024-42977

CVE-2024-42977 affects Tenda FH1206 v02.03.01.35. The issue is a stack overflow in the fromqossetting function triggered by the qos parameter, allowing a crafted POST request to cause DoS. Remediation/mitigation: PT-2024-30233 notes temporary workarounds (disable fromqossetting or restrict access...

Tenda FH1201 安全漏洞

The Tenda FH1201 is a wireless router from Tenda China. The Tenda FH1201 suffers from a buffer overflow vulnerability that originates from the qos parameter in the fromqossetting function containing a stack overflow. An attacker could exploit this vulnerability to cause a denial of service...

PT-2024-30233 · Tenda · Tenda Fh1206

Name of the Vulnerable Software and Affected Versions: Tenda FH1206 version v02.03.01.35 Description: The issue is related to a stack overflow via the qos parameter in the fromqossetting function, allowing attackers to cause a Denial of Service DoS via a crafted POST request to the affected API...

CVE-2024-32287

Tenda W30E v1.0 V1.0.1.25633 firmware has a stack overflow vulnerability via the qos parameter in the fromqossetting function...

CVE-2024-32287

Tenda W30E v1.0 V1.0.1.25633 firmware has a stack overflow vulnerability via the qos parameter in the fromqossetting function...

PT-2024-24485 · Tenda · Tenda W30E

Name of the Vulnerable Software and Affected Versions: Tenda W30E version 1.0 V1.0.1.25633 Description: The issue is a stack overflow vulnerability that can be exploited via the qos parameter in the fromqossetting function. This vulnerability may allow attackers to execute arbitrary code,...

CVE-2024-32287

Tenda W30E v1.0 V1.0.1.25633 firmware has a stack overflow vulnerability via the qos parameter in the fromqossetting function...

CVE-2024-32287

CVE-2024-32287 affects Tenda W30E firmware v1.0.1.25(633). Multiple sources describe a stack overflow vulnerability in the fromqossetting function triggered via the qos parameter. Red Hat and CNVD entries characterize it as a buffer/stack overflow with potential impact to availability (per CNVD) ...

CVE-2024-32287

Tenda W30E v1.0 V1.0.1.25633 firmware has a stack overflow vulnerability via the qos parameter in the fromqossetting function...

CVE-2023-43284

D-Link Wireless MU-MIMO Gigabit AC1200 Router DIR-846 100A53DBR-Retail devices allow an authenticated remote attacker to execute arbitrary code via an unspecified manipulation of the QoS POST parameter...

Code injection

D-Link Wireless MU-MIMO Gigabit AC1200 Router DIR-846 100A53DBR-Retail devices allow an authenticated remote attacker to execute arbitrary code via an unspecified manipulation of the QoS POST parameter...