Lucene search
K

16 matches found

RedhatCVE
RedhatCVE
added 2026/02/23 1:20 a.m.9 views

CVE-2026-2886

A weakness has been identified in Tenda A21 1.0.0.0. This affects the function setdevicename of the file /goform/SetOnlineDevName. This manipulation of the argument devName causes stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been made available to t...

9CVSS8.7AI score0.00556EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/02/21 9:2 p.m.5 views

CVE-2026-2886 Tenda A21 SetOnlineDevName set_device_name stack-based overflow

A weakness has been identified in Tenda A21 1.0.0.0. This affects the function setdevicename of the file /goform/SetOnlineDevName. This manipulation of the argument devName causes stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been made available to t...

9CVSS8.8AI score0.00556EPSS
Exploits1References5
BDU FSTEC
BDU FSTEC
added 2024/11/19 12:0 a.m.4 views

The vulnerabilities of the s390/dasd components of the Linux operating system’s kernel, which allow a hacker to trigger a service failure

The vulnerability of the s390/dasd components in the Linux operating system’s kernel is related to incorrect calculations in the dasdgenericsetonline function. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.4AI score0.00273EPSS
Exploits0References35Affected Software4
BDU FSTEC
BDU FSTEC
added 2024/11/13 12:0 a.m.10 views

The vulnerabilities of the s390/cio components of Linux kernel, which allow a hacker to trigger a service failure

The vulnerability of the s390/cio component of the Linux operating system’s kernel is related to the state of the ccwdevicesetonline function. Exploiting this vulnerability can allow an attacker to gain increased privileges within the system...

5.5CVSS6.1AI score0.00175EPSS
Exploits0References36Affected Software6
Positive Technologies
Positive Technologies
added 2024/08/09 12:0 a.m.7 views

PT-2024-8701 · Tenda · Tenda Ac6

Name of the Vulnerable Software and Affected Versions: Tenda AC6 version 15.03.05.19 Description: A critical issue affects the function formSetDeviceName of the file /goform/SetOnlineDevName, where the manipulation of the argument devName leads to a stack-based buffer overflow. This can be...

9.8CVSS9.2AI score0.01236EPSS
Exploits1References15
Positive Technologies
Positive Technologies
added 2024/06/28 12:0 a.m.4 views

PT-2024-37598 · Tenda · Tenda A301

Name of the Vulnerable Software and Affected Versions: Tenda A301 version 15.13.08.12 Description: A critical issue was found in the function fromSetWirelessRepeat of the file /goform/SetOnlineDevName. The manipulation of the argument devName leads to a stack-based buffer overflow. This issue can...

9.8CVSS6.8AI score0.00993EPSS
Exploits1References6
OSV
OSV
added 2024/04/26 8:15 p.m.3 views

CVE-2024-4238

A vulnerability has been found in Tenda AX1806 1.0.0.1 and classified as critical. Affected by this vulnerability is the function formSetDeviceName of the file /goform/SetOnlineDevName. The manipulation of the argument devName leads to stack-based buffer overflow. The attack can be launched...

8.8CVSS6.3AI score0.01451EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2024/04/09 12:0 a.m.9 views

PT-2024-8485 · Tenda · Tenda Ac15

Name of the Vulnerable Software and Affected Versions: Tenda AC15 version 15.03.05.19 Description: A critical issue affects the function formSetDeviceName of the file /goform/SetOnlineDevName. The manipulation of the argument devName leads to a stack-based buffer overflow in the memory. This can ...

9CVSS9.3AI score0.01228EPSS
Exploits1References12
Positive Technologies
Positive Technologies
added 2024/03/13 12:0 a.m.4 views

PT-2024-2265 · Tenda · Tenda Ac18

Name of the Vulnerable Software and Affected Versions: Tenda AC18 version 15.03.05.05 Description: A critical issue affects the formSetDeviceName function of the /goform/SetOnlineDevName file, leading to a stack-based buffer overflow when the devName or mac argument is manipulated. This can be...

9CVSS9AI score0.01648EPSS
Exploits1References8
Positive Technologies
Positive Technologies
added 2024/01/14 12:0 a.m.7 views

PT-2024-1455 · Tenda · Tenda Ac15

Name of the Vulnerable Software and Affected Versions: Tenda A15 version 15.13.07.13 Description: A critical vulnerability has been found in the Web-based Management Interface of Tenda A15. The issue is related to a stack-based buffer overflow caused by the manipulation of the mac argument in the...

8.3CVSS7.6AI score0.01679EPSS
Exploits1References7
OSV
OSV
added 2023/12/07 3:15 p.m.6 views

CVE-2023-49428

Tenda AX12 V22.03.01.46 has been discovered to contain a command injection vulnerability in the 'mac' parameter at /goform/SetOnlineDevName...

9.8CVSS5.8AI score0.02499EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2023/12/07 12:0 a.m.6 views

PT-2023-7508 · Tenda · Tenda Ax12

Name of the Vulnerable Software and Affected Versions: Tenda AX12 version V22.03.01.46 Description: The issue is related to a command injection vulnerability in the mac parameter at the "/goform/SetOnlineDevName" API endpoint. This vulnerability is due to the lack of input validation when...

9.8CVSS8.1AI score0.02499EPSS
Exploits1References7
Positive Technologies
Positive Technologies
added 2023/12/07 12:0 a.m.6 views

PT-2023-31221 · Tenda · Tenda Ax9

Name of the Vulnerable Software and Affected Versions: Tenda AX9 version V22.03.01.46 Description: A command injection issue has been discovered in the mac parameter at the "/goform/SetOnlineDevName" API endpoint. This allows for potential command injection attacks. Recommendations: For Tenda AX9...

9.8CVSS9.5AI score0.02411EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 2023/06/08 3:15 p.m.4 views

CVE-2023-34570

Tenda AC10 v4 USAC10V4.0siV16.03.10.13cn was discovered to contain a stack overflow via parameter devName at /goform/SetOnlineDevName...

6.7CVSS6.7AI score0.00318EPSS
Exploits0References3
OSV
OSV
added 2021/04/29 4:15 p.m.5 views

CVE-2021-25812

Command injection vulnerability in China Mobile An Lianbao WF-1 1.01 via the 'ip' parameter with a POST request to /api/ZRQos/setonlineclient...

9.8CVSS5.8AI score0.02809EPSS
Exploits0References3
Prion
Prion
added 2021/04/29 4:15 p.m.17 views

Command injection

Command injection vulnerability in China Mobile An Lianbao WF-1 1.01 via the 'ip' parameter with a POST request to /api/ZRQos/setonlineclient...

7.5CVSS9.4AI score0.02809EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder