CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

559 matches found

NVD•added 2025/12/29 7:15 a.m.•1 views

CVE-2025-15177

A vulnerability has been found in Tenda WH450 1.0.0.18. This vulnerability affects unknown code of the file /goform/SetIpBind of the component HTTP Request Handler. The manipulation of the argument page leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has be...

8.6CVSS0.00191EPSS

Exploits3References6

RedhatCVE•added 2025/12/22 8:17 a.m.•3 views

CVE-2025-14994

A flaw has been found in Tenda FH1201 and FH1206 1.2.0.14408/1.2.0.88155. This impacts the function strcat of the file /goform/webtypelibrary of the component HTTP Request Handler. This manipulation of the argument webSiteId causes stack-based buffer overflow. The attack is possible to be carried...

9CVSS8.9AI score0.00222EPSS

Exploits1References1

OSV•added 2025/12/21 8:15 a.m.•0 views

CVE-2025-14994

8.8CVSS6.4AI score0.00222EPSS

Exploits1References7

OSV•added 2025/12/21 4:16 a.m.•0 views

CVE-2025-14992

A security vulnerability has been detected in Tenda AC18 15.03.05.05. The impacted element is the function strcpy of the file /goform/GetParentControlInfo of the component HTTP Request Handler. The manipulation of the argument mac leads to stack-based buffer overflow. Remote exploitation of the...

8.7CVSS6.3AI score0.00228EPSS

Exploits1References6

EUVD•added 2025/12/19 9:30 p.m.•1 views

EUVD-2025-204612

A vulnerability has been found in TOTOLINK T10 4.1.8cu.5083B20200521. This affects the function sprintf of the file /cgi-bin/cstecgi.cgi. Such manipulation of the argument loginAuthUrl leads to stack-based buffer overflow. The attack may be performed from remote...

10CVSS6.6AI score0.00951EPSS

Exploits1References7

OSV•added 2025/12/18 5:15 p.m.•0 views

CVE-2025-14879

A weakness has been identified in Tenda WH450 1.0.0.18. Affected is an unknown function of the file /goform/onSSIDChange of the component HTTP Request Handler. This manipulation of the argument ssidindex causes stack-based buffer overflow. It is possible to initiate the attack remotely. The explo...

9.3CVSS6.5AI score0.00874EPSS

Exploits1References5

NVD•added 2025/12/06 11:15 a.m.•3 views

CVE-2025-14134

A vulnerability was determined in Linksys RE6500, RE6250, RE6300, RE6350, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. Affected by this issue is the function RE2000v2RepeatergetwirelessclientlistsetClientsName of the file modform.so. Executing manipulation of the...

9CVSS0.00371EPSS

Exploits1References6

Vulnrichment•added 2025/11/15 6:32 a.m.•2 views

CVE-2025-13190 D-Link DIR-816L __ajax_exporer.sgi scandir_main stack-based overflow

A vulnerability was found in D-Link DIR-816L 206b09beta. This vulnerability affects the function scandirmain of the file /portal/ajaxexporer.sgi. The manipulation of the argument en results in stack-based buffer overflow. The attack may be performed from remote. The exploit has been made public a...

9CVSS6.7AI score0.00078EPSS

Exploits1References5

Vulnrichment•added 2025/10/27 3:2 a.m.•2 views

CVE-2025-12210 Tenda O3 AdvSetLanip GetValue stack-based overflow

A vulnerability was identified in Tenda O3 1.0.0.102478. Affected by this vulnerability is the function SetValue/GetValue of the file /goform/AdvSetLanip. The manipulation of the argument lanIp leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit is...

9CVSS7.1AI score0.00408EPSS

Exploits1References5

RedhatCVE•added 2025/10/08 11:19 a.m.•1 views

CVE-2025-11387

A vulnerability was determined in Tenda AC15 15.03.05.18. This affects an unknown function of the file /goform/fastsettingpppoeset. This manipulation of the argument Password causes stack-based buffer overflow. The attack may be initiated remotely. The exploit has been publicly disclosed and may ...

9CVSS7.8AI score0.00248EPSS

Exploits1References1

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2019-2392

Malware in sbrugna...

10CVSS9.2AI score0.00356EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2012-5745

Malware in sbrugna...

9.8CVSS9.3AI score0.01079EPSS

Exploits1References3

Positive Technologies•added 2025/10/07 12:0 a.m.•2 views

PT-2025-40977

Name of the Vulnerable Software and Affected Versions Tenda AC15 version 15.03.05.18 Description A buffer overflow can occur due to the manipulation of the ddnsEn argument within a POST request to the /goform/SetDDNSCfg file. This impacts an unknown function of the POST Parameter Handler componen...

9CVSS8.9AI score0.00248EPSS

Exploits1References12

Positive Technologies•added 2025/10/06 12:0 a.m.•3 views

PT-2025-40881

Name of the Vulnerable Software and Affected Versions Tenda AC18 version 15.03.05.196318 Description A stack-based buffer overflow issue exists in the processing of the /goform/SetDDNSCfg file in Tenda AC18. The manipulation of the ddnsEn argument can trigger this overflow, allowing for remote...

9CVSS9AI score0.0027EPSS

Exploits1References11

Redos•added 2025/10/06 12:0 a.m.•2 views

ROS-20251006-13

A vulnerability in a library that provides basic functionality for data serialization and deserialization Jackson Core, is related to the fact that when parsing JSON from an array of bytes with offset and length, an exception message is erroneously read from the beginning of the array. exception...

8.7CVSS6.8AI score0.00252EPSS

Exploits0

Redos•added 2025/10/06 12:0 a.m.•1 views

ROS-20251006-14

8.7CVSS6.8AI score0.00252EPSS

Exploits0

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-28755

Malicious code in bioql PyPI...

9CVSS8.7AI score0.0085EPSS

Exploits1References6

EUVD•added 2025/10/03 8:7 p.m.•3 views