Lucene search
K

11 matches found

CNNVD
CNNVD
added 2026/02/19 12:0 a.m.8 views

Comodo Dome Firewall 跨站脚本漏洞

Comodo Dome Firewall is a unified threat management and next-generation firewall provided by the Chinese company Comodo. Version 2.7.0 of Comodo Dome Firewall contains a cross-site scripting vulnerability. This vulnerability stems from improper cleaning of the protocol parameter input in the QoS...

6.1CVSS5.6AI score0.00399EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2026/01/09 11:29 a.m.10 views

CVE-2021-27705

Buffer Overflow in Tenda G1 and G3 routers with firmware v15.11.0.179502CN allows remote attackers to execute arbitrary code via a crafted action/"qosIndex "request. This occurs because the "formQOSRuleDel" function directly passes the parameter "qosIndex" to strcpy without limit...

9.8CVSS8.1AI score0.02943EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/11/14 12:1 a.m.11 views

CVE-2025-60675

A command injection vulnerability exists in the D-Link DIR-823G router firmware DIR823GV1.0.2B0520181207.bin in the timelycheck and sysconf binaries, which process the /tmp/newqos.rule configuration file. The vulnerability occurs because parsed fields from the configuration file are concatenated...

5.4CVSS8.2AI score0.01336EPSS
Exploits1References1
NVD
NVD
added 2025/11/13 7:15 p.m.28 views

CVE-2025-60675

A command injection vulnerability exists in the D-Link DIR-823G router firmware DIR823GV1.0.2B0520181207.bin in the timelycheck and sysconf binaries, which process the /tmp/newqos.rule configuration file. The vulnerability occurs because parsed fields from the configuration file are concatenated...

5.4CVSS0.01336EPSS
Exploits1References4
OSV
OSV
added 2025/11/13 7:15 p.m.4 views

CVE-2025-60675

A command injection vulnerability exists in the D-Link DIR-823G router firmware DIR823GV1.0.2B0520181207.bin in the timelycheck and sysconf binaries, which process the /tmp/newqos.rule configuration file. The vulnerability occurs because parsed fields from the configuration file are concatenated...

5.4CVSS6.1AI score0.01336EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2025/11/13 12:0 a.m.13 views

PT-2025-46888

A command injection vulnerability exists in the D-Link DIR-823G router firmware DIR823G V1.0.2B05 20181207.bin in the timelycheck and sysconf binaries, which process the /tmp/new qos.rule configuration file. The vulnerability occurs because parsed fields from the configuration file are concatenat...

5.4CVSS8.2AI score0.01336EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/11/13 12:0 a.m.5 views

D-Link DIR-823G 安全漏洞

The D-Link DIR-823G is a wireless router from China's AUO D-Link. The D-Link DIR-823G suffers from a command injection vulnerability that can be exploited by an attacker to execute arbitrary commands on the device...

5.4CVSS8AI score0.01336EPSS
Exploits1References5
BDU FSTEC
BDU FSTEC
added 2023/07/11 12:0 a.m.7 views

The vulnerability of the QoSRuleListRpm component (/userRpm/QoSRuleListRpm.htm) in the software for TP-Link routers such as TL-WR940N, TL-WR841N, and TL-WR941N allows a hacker to cause service interruptions.

The vulnerability of the QoSRuleListRpm component /userRpm/QoSRuleListRpm.htm of TP-Link router software products such as TL-WR940N, TL-WR841N, and TL-WR941N lies in the fact that the operation is executed outside the buffer in memory when processing key parameters. Exploiting this vulnerability...

7.5CVSS7.4AI score0.00815EPSS
Exploits1References3
CNNVD
CNNVD
added 2023/06/22 12:0 a.m.5 views

TP-LINK TL-WR940N 安全漏洞

The TP-LINK TL-WR940N is a wireless router from China P&L TP-LINK. The TP-LINK TL-WR940N suffers from a security vulnerability that originates from a buffer overflow vulnerability contained in the component QoSRuleListRPM. An attacker could exploit the vulnerability to cause a denial of service D...

7.5CVSS7.7AI score0.00815EPSS
Exploits1References2
OSV
OSV
added 2022/12/23 7:15 p.m.6 views

CVE-2022-45714

IP-COM M50 V15.11.0.3310768 was discovered to contain a buffer overflow via the indexSet parameter in the formQOSRuleDel function...

9.8CVSS6.1AI score0.01056EPSS
Exploits0References2
OSV
OSV
added 2021/04/14 3:15 p.m.3 views

CVE-2021-27705

Buffer Overflow in Tenda G1 and G3 routers with firmware v15.11.0.179502CN allows remote attackers to execute arbitrary code via a crafted action/"qosIndex "request. This occurs because the "formQOSRuleDel" function directly passes the parameter "qosIndex" to strcpy without limit...

9.8CVSS7.8AI score0.02943EPSS
Exploits1References1
Rows per page
Query Builder