Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9425 matches found

ATTACKERKB
ATTACKERKBadded 2026/02/09 1:32 a.m.4 views

CVE-2026-2202

A vulnerability was detected in Tenda AC8 16.03.33.05. Affected is the function fromSetWifiGusetBasic of the file /goform/WifiGuestSet of the component httpd. The manipulation of the argument shareSpeed results in buffer overflow. The attack may be launched remotely. The exploit is now public and...

9CVSS8.6AI score0.00112EPSS
Exploits1References6Affected Software1
CVE
CVEadded 2026/02/09 1:32 a.m.8 views

CVE-2026-2202

The CVE-2026-2202 entry concerns Tenda AC8 16.03.33.05 where the fromSetWifiGusetBasic function in /goform/WifiGuestSet (httpd) is vulnerable to a buffer overflow via the shareSpeed argument. Exploitation is described as remote with publicly available exploit code. Affected software/component: Te...

9CVSS8.6AI score0.00112EPSS
Exploits1References6Affected Software1
CNNVD
CNNVDadded 2026/02/09 12:0 a.m.3 views

D-Link DIR-823X 操作系统命令注入漏洞

The D-Link DIR-823X is a wireless router produced by D-Link Corporation. The D-Link DIR-823X 250416 version has a vulnerability related to operating system command injection. This vulnerability stems from incorrect operations on the function sub4211C8 in the file/goform/setfiltering, which may le...

8.6CVSS7.1AI score0.00504EPSS
Exploits1References7
Positive Technologies
Positive Technologiesadded 2026/02/09 12:0 a.m.4 views

PT-2026-7046

A vulnerability has been found in D-Link DIR-823X 250416. This affects the function sub 4211C8 of the file /goform/set filtering. Such manipulation leads to os command injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used...

8.6CVSS5.4AI score0.00504EPSS
Exploits1References6
OSV
OSVadded 2026/02/08 11:15 p.m.1 views

CVE-2026-2193

A vulnerability was detected in D-Link DI-7100G C1 24.04.18D1. Affected by this issue is the function setjhttpdinfo. Performing a manipulation of the argument usbusername results in command injection. Remote exploitation of the attack is possible...

8.8CVSS5.7AI score0.00099EPSS
Exploits1References5
NVD
NVDadded 2026/02/08 11:15 p.m.2 views

CVE-2026-2193

A vulnerability was detected in D-Link DI-7100G C1 24.04.18D1. Affected by this issue is the function setjhttpdinfo. Performing a manipulation of the argument usbusername results in command injection. Remote exploitation of the attack is possible...

8.8CVSS0.00099EPSS
Exploits1References5
ATTACKERKB
ATTACKERKBadded 2026/02/08 11:2 p.m.4 views

CVE-2026-2193

A vulnerability was detected in D-Link DI-7100G C1 24.04.18D1. Affected by this issue is the function setjhttpdinfo. Performing a manipulation of the argument usbusername results in command injection. Remote exploitation of the attack is possible...

6.5CVSS6.5AI score0.00099EPSS
Exploits1References6Affected Software1
Vulnrichment
Vulnrichmentadded 2026/02/08 11:2 p.m.2 views

CVE-2026-2193 D-Link DI-7100G C1 set_jhttpd_info command injection

A vulnerability was detected in D-Link DI-7100G C1 24.04.18D1. Affected by this issue is the function setjhttpdinfo. Performing a manipulation of the argument usbusername results in command injection. Remote exploitation of the attack is possible...

6.5CVSS5.5AI score0.00099EPSS
Exploits1References5
CVE
CVEadded 2026/02/08 11:2 p.m.8 views

CVE-2026-2193

The CVE-2026-2193 affects D-Link DI-7100G C1 (firmware 24.04.18D1). The vulnerability lies in the set_jhttpd_info function where manipulating the usb_username argument enables command injection, enabling remote exploitation. Reported CVSS metrics indicate network access with low complexity and lo...

8.8CVSS6.5AI score0.00099EPSS
Exploits1References5Affected Software1
OSV
OSVadded 2026/02/08 9:15 p.m.0 views

CVE-2026-2185

A flaw has been found in Tenda RX3 16.03.13.11. This issue affects the function setdevicename of the file /goform/setBlackRule of the component MAC Filtering Configuration Endpoint. This manipulation of the argument devName/mac causes stack-based buffer overflow. The attack is possible to be...

8.7CVSS6.3AI score
Exploits0References5
CVE
CVEadded 2026/02/08 9:2 p.m.8 views

CVE-2026-2187

Tenda RX3 16.03.13.11 is affected by a stack-based buffer overflow in the set_qosMib_list function of /goform/formSetQosBand. Manipulating the argument list can trigger the overflow, and the vulnerability can be exploited remotely. Public exploit exists. The PT-2026-6984 entry notes there is no i...

9CVSS8.7AI score0.00035EPSS
Exploits1References5Affected Software1
Vulnrichment
Vulnrichmentadded 2026/02/08 9:2 p.m.1 views

CVE-2026-2186 Tenda RX3 SetIpMacBind fromSetIpMacBind stack-based overflow

A vulnerability has been found in Tenda RX3 16.03.13.11. Impacted is the function fromSetIpMacBind of the file /goform/SetIpMacBind. Such manipulation of the argument list leads to stack-based buffer overflow. The attack may be performed from remote. The exploit has been disclosed to the public a...

9CVSS6.1AI score0.00035EPSS
Exploits1References5
EUVD
EUVDadded 2026/02/08 9:2 p.m.3 views

EUVD-2026-5764

A vulnerability has been found in Tenda RX3 16.03.13.11. Impacted is the function fromSetIpMacBind of the file /goform/SetIpMacBind. Such manipulation of the argument list leads to stack-based buffer overflow. The attack may be performed from remote. The exploit has been disclosed to the public a...

9CVSS6.1AI score0.00035EPSS
Exploits1References5
Cvelist
Cvelistadded 2026/02/08 8:32 p.m.28 views

CVE-2026-2185 Tenda RX3 MAC Filtering Configuration Endpoint setBlackRule set_device_name stack-based overflow

A flaw has been found in Tenda RX3 16.03.13.11. This issue affects the function setdevicename of the file /goform/setBlackRule of the component MAC Filtering Configuration Endpoint. This manipulation of the argument devName/mac causes stack-based buffer overflow. The attack is possible to be...

9CVSS0.00035EPSS
Exploits1References5
EUVD
EUVDadded 2026/02/08 8:32 p.m.1 views

EUVD-2026-5765

A flaw has been found in Tenda RX3 16.03.13.11. This issue affects the function setdevicename of the file /goform/setBlackRule of the component MAC Filtering Configuration Endpoint. This manipulation of the argument devName/mac causes stack-based buffer overflow. The attack is possible to be...

9CVSS6.3AI score0.00035EPSS
Exploits1References5
CVE
CVEadded 2026/02/08 8:32 p.m.8 views

CVE-2026-2185

The CVE-2026-2185 entry concerns the Tenda RX3 firmware version 16.03.13.11. The vulnerability is in the MAC Filtering Configuration Endpoint, specifically the setBlackRule file’s set_device_name function. Manipulating the devName/mac argument causes a stack-based buffer overflow, and the attack ...

9CVSS8.7AI score0.00035EPSS
Exploits1References5Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/02/08 8:32 p.m.5 views

CVE-2026-2185

A flaw has been found in Tenda RX3 16.03.13.11. This issue affects the function setdevicename of the file /goform/setBlackRule of the component MAC Filtering Configuration Endpoint. This manipulation of the argument devName/mac causes stack-based buffer overflow. The attack is possible to be...

9CVSS8.7AI score0.00035EPSS
Exploits1References5Affected Software1
Vulnrichment
Vulnrichmentadded 2026/02/08 8:32 p.m.2 views

CVE-2026-2185 Tenda RX3 MAC Filtering Configuration Endpoint setBlackRule set_device_name stack-based overflow

A flaw has been found in Tenda RX3 16.03.13.11. This issue affects the function setdevicename of the file /goform/setBlackRule of the component MAC Filtering Configuration Endpoint. This manipulation of the argument devName/mac causes stack-based buffer overflow. The attack is possible to be...

9CVSS6.2AI score0.00035EPSS
Exploits1References5
Cvelist
Cvelistadded 2026/02/08 8:2 p.m.29 views

CVE-2026-2182 UTT 进取 521G setSysAdm doSystem command injection

A weakness has been identified in UTT 进取 521G 3.1.1-190816. Affected by this issue is the function doSystem of the file /goform/setSysAdm. Executing a manipulation of the argument passwd1 can lead to command injection. The attack may be launched remotely. The exploit has been made available to th...

8.6CVSS0.00464EPSS
Exploits1References5
OSV
OSVadded 2026/02/08 7:16 p.m.2 views

CVE-2026-2175

A weakness has been identified in D-Link DIR-823X 250416. This vulnerability affects the function sub420618 of the file /goform/setupnp. This manipulation of the argument upnpenable causes os command injection. Remote exploitation of the attack is possible. The exploit has been made available to...

7.2CVSS5.6AI score
Exploits0References5
Rows per page
Query Builder