EUVD-2026-21322

A security vulnerability has been detected in Totolink A7100RU 7.4cu.2313b20191024. Impacted is the function setPptpServerCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. The manipulation of the argument enable leads to os command injection. The attack may be initiated remotely...

CVE-2022-25460

Tenda AC6 v15.03.05.09multi was discovered to contain a stack overflow via the endip parameter in the SetPptpServerCfg function...

CVE-2022-25460

Tenda AC6 v15.03.05.09multi was discovered to contain a stack overflow via the endip parameter in the SetPptpServerCfg function...

CVE-2022-25461

Tenda AC6 v15.03.05.09multi was discovered to contain a stack overflow via the startip parameter in the SetPptpServerCfg function...

Stack overflow

Tenda AC6 v15.03.05.09multi was discovered to contain a stack overflow via the startip parameter in the SetPptpServerCfg function...

CVE-2022-25460

Tenda AC6 v15.03.05.09multi was discovered to contain a stack overflow via the endip parameter in the SetPptpServerCfg function...

CVE-2022-25461

Tenda AC6 v15.03.05.09multi was discovered to contain a stack overflow via the startip parameter in the SetPptpServerCfg function...

CVE-2022-25461

CVE-2022-25461 concerns the Tenda AC6 router. The affected component is the SetPptpServerCfg function, where a stack overflow is triggered through the startip parameter in v15.03.05.09_multi. This condition can lead to arbitrary command execution as described in CNVD/CNVD-like and other CVE mirro...