Lucene search
K

55 matches found

OSV
OSV
added 2024/06/28 5:15 p.m.4 views

CVE-2024-6402

A vulnerability classified as critical was found in Tenda A301 15.13.08.12. Affected by this vulnerability is the function fromSetWirelessRepeat of the file /goform/SetOnlineDevName. The manipulation of the argument devName leads to stack-based buffer overflow. The attack can be launched remotely...

9.8CVSS6.3AI score0.00993EPSS
Exploits1References4
Cvelist
Cvelist
added 2024/06/28 5:0 p.m.29 views

CVE-2024-6403 Tenda A301 SetOnlineDevName formWifiBasicSet stack-based overflow

A vulnerability, which was classified as critical, has been found in Tenda A301 15.13.08.12. Affected by this issue is the function formWifiBasicSet of the file /goform/SetOnlineDevName. The manipulation of the argument devName leads to stack-based buffer overflow. The attack may be launched...

7.1CVSS0.00993EPSS
Exploits1References4
Cvelist
Cvelist
added 2024/06/28 5:0 p.m.26 views

CVE-2024-6402 Tenda A301 SetOnlineDevName fromSetWirelessRepeat stack-based overflow

A vulnerability classified as critical was found in Tenda A301 15.13.08.12. Affected by this vulnerability is the function fromSetWirelessRepeat of the file /goform/SetOnlineDevName. The manipulation of the argument devName leads to stack-based buffer overflow. The attack can be launched remotely...

7.1CVSS0.00993EPSS
Exploits1References4
Cvelist
Cvelist
added 2024/04/26 8:0 p.m.13 views

CVE-2024-4238 Tenda AX1806 SetOnlineDevName formSetDeviceName stack-based overflow

A vulnerability has been found in Tenda AX1806 1.0.0.1 and classified as critical. Affected by this vulnerability is the function formSetDeviceName of the file /goform/SetOnlineDevName. The manipulation of the argument devName leads to stack-based buffer overflow. The attack can be launched...

9CVSS9AI score0.01451EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2024/04/06 12:0 a.m.4 views

The vulnerability of the formSetDeviceName function (/goform/SetOnlineDevName) in the Tenda AC7 router software allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the formSetDeviceName function /goform/SetOnlineDevName in the Tenda AC7 router’s microprogramming software is caused by buffer overflow in the stack. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the...

9CVSS8AI score0.01684EPSS
Exploits1References5Affected Software1
Positive Technologies
Positive Technologies
added 2024/03/26 12:0 a.m.5 views

PT-2024-2600 · Tenda · Tenda Ac7

Name of the Vulnerable Software and Affected Versions: Tenda AC7 version 15.03.06.44 Description: The issue is caused by a stack-based buffer overflow in the formSetDeviceName function of the /goform/SetOnlineDevName file. This can be exploited remotely by manipulating the devName argument,...

9CVSS8.9AI score0.01684EPSS
Exploits1References10
BDU FSTEC
BDU FSTEC
added 2024/03/22 12:0 a.m.5 views

The vulnerability of the formSetDeviceName() function (/goform/SetOnlineDevName) in the Tenda AC18 router’s microprogramming software allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the formSetDeviceName function /goform/SetOnlineDevName of the Tenda AC18 router’s software lies in the fact that the operation may escape out of the buffer in memory when processing the devName parameter. Exploiting this vulnerability could allow an attacker to compromise th...

9CVSS7.9AI score0.01648EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2024/03/20 4:0 p.m.17 views

CVE-2024-2703 Tenda AC10U SetOnlineDevName formSetDeviceName stack-based overflow

A vulnerability classified as critical has been found in Tenda AC10U 15.03.06.49. Affected is the function formSetDeviceName of the file /goform/SetOnlineDevName. The manipulation of the argument mac leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit h...

9CVSS7AI score0.01546EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2024/03/20 12:0 a.m.6 views

PT-2024-2347 · Tenda · Tenda Ac10

Name of the Vulnerable Software and Affected Versions: Tenda AC10U version 15.03.06.49 Description: The issue is related to a stack-based buffer overflow in the Tenda AC10U router's firmware, specifically affecting the function formSetFirewallCfg /goform/SetFirewallCfg and formSetDeviceName of th...

9CVSS8.9AI score0.01546EPSS
Exploits1References7
CNNVD
CNNVD
added 2024/03/20 12:0 a.m.4 views

Tenda AC10 Security Vulnerability

Tenda AC10 is a wireless router from Tenda, China. A security vulnerability exists in Tenda AC10U version 15.03.06.49, which is caused by a stack-based buffer overflow in the mac parameter of the formSetDeviceName function of the /goform/SetOnlineDevName file...

9CVSS7.5AI score0.01546EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2024/03/15 8:31 a.m.17 views

CVE-2024-2487 Tenda AC18 SetOnlineDevName formSetDeviceName stack-based overflow

A vulnerability was found in Tenda AC18 15.03.05.05. It has been declared as critical. This vulnerability affects the function formSetDeviceName of the file /goform/SetOnlineDevName. The manipulation of the argument devName/mac leads to stack-based buffer overflow. The attack can be initiated...

9CVSS8.8AI score0.01648EPSS
Exploits1References3
OSV
OSV
added 2024/01/15 3:15 a.m.5 views

CVE-2024-0534

A vulnerability classified as critical has been found in Tenda A15 15.13.07.13. Affected is an unknown function of the file /goform/SetOnlineDevName of the component Web-based Management Interface. The manipulation of the argument mac leads to stack-based buffer overflow. It is possible to launch...

7.2CVSS6.1AI score0.01679EPSS
Exploits1References3
OSV
OSV
added 2024/01/15 3:15 a.m.6 views

CVE-2024-0533

A vulnerability was found in Tenda A15 15.13.07.13. It has been rated as critical. This issue affects some unknown processing of the file /goform/SetOnlineDevName of the component Web-based Management Interface. The manipulation of the argument devName leads to stack-based buffer overflow. The...

7.2CVSS6.4AI score0.01731EPSS
Exploits1References3
Cvelist
Cvelist
added 2024/01/15 2:31 a.m.29 views

CVE-2024-0533 Tenda A15 Web-based Management Interface SetOnlineDevName stack-based overflow

A vulnerability was found in Tenda A15 15.13.07.13. It has been rated as critical. This issue affects some unknown processing of the file /goform/SetOnlineDevName of the component Web-based Management Interface. The manipulation of the argument devName leads to stack-based buffer overflow. The...

8.3CVSS7.3AI score0.01731EPSS
Exploits1References3
CNNVD
CNNVD
added 2024/01/15 12:0 a.m.4 views

Tenda A15 安全漏洞

Tenda A15 is a WiFi extender from Tenda China. A buffer overflow vulnerability exists in Tenda A15 version 15.13.07.13, which originates from the mac parameter of the /goform/SetOnlineDevName file failing to correctly validate the length of the input data, and can be exploited by a remote attacke...

8.3CVSS8.2AI score0.01679EPSS
Exploits1References4
CNNVD
CNNVD
added 2024/01/15 12:0 a.m.5 views

Tenda A15 安全漏洞

Tenda A15 is a WiFi extender from Tenda China. A buffer overflow vulnerability exists in Tenda A15 version 15.13.07.13, which originates from the devName parameter of the /goform/SetOnlineDevName file failing to correctly validate the length of the input data, and can be exploited by a remote...

8.3CVSS8.2AI score0.01731EPSS
Exploits1References4
BDU FSTEC
BDU FSTEC
added 2023/12/11 12:0 a.m.7 views

The vulnerability of the SetOnlineDevName() function in the microprogramming software for wireless Wi-Fi routers Tenda AX12 allows a hacker to execute arbitrary commands.

The vulnerability of the SetOnlineDevName function in the Tenda AX12 wireless Wi-Fi router software lies in the lack of measures taken to sanitize input data during the processing of the mac parameter. Exploiting this vulnerability could allow an attacker to execute arbitrary commands remotely...

10CVSS8.1AI score0.02499EPSS
Exploits1References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2023/12/07 4:15 p.m.5 views

CVE-2023-49431

Tenda AX9 V22.03.01.46 has been discovered to contain a command injection vulnerability in the 'mac' parameter at /goform/SetOnlineDevName...

9.8CVSS5.8AI score0.02411EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2023/12/07 3:15 p.m.5 views

CVE-2023-49428

Tenda AX12 V22.03.01.46 has been discovered to contain a command injection vulnerability in the 'mac' parameter at /goform/SetOnlineDevName...

9.8CVSS5.8AI score0.02499EPSS
Exploits1References2
NVD
NVD
added 2023/12/07 3:15 p.m.21 views

CVE-2023-49428

Tenda AX12 V22.03.01.46 has been discovered to contain a command injection vulnerability in the 'mac' parameter at /goform/SetOnlineDevName...

9.8CVSS0.02499EPSS
Exploits1References1
Rows per page
Query Builder