Lucene search
K

34197 matches found

OSV
OSV
•added 2025/11/10 5:15 p.m.•6 views

CVE-2025-63147

Tenda AX3 V16.03.12.10CN was discovered to contain a stack overflow in the deviceId parameter of the saveParentControlInfo function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

7.5CVSS5.9AI score0.00324EPSS
Exploits1References1
OSV
OSV
•added 2025/11/10 5:15 p.m.•4 views

CVE-2025-63455

Tenda AX-3 v16.03.12.10CN was discovered to contain a stack overflow via the shareSpeed parameter in the fromSetWifiGusetBasic function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

7.5CVSS5.9AI score0.00342EPSS
Exploits1References1
NVD
NVD
•added 2025/11/10 5:15 p.m.•8 views

CVE-2025-63456

Tenda AX-1803 v1.0.0.1 was discovered to contain a stack overflow via the time parameter in the SetSysTimeCfg function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

7.5CVSS0.00324EPSS
Exploits1References1
NVD
NVD
•added 2025/11/10 5:15 p.m.•3 views

CVE-2025-63147

Tenda AX3 V16.03.12.10CN was discovered to contain a stack overflow in the deviceId parameter of the saveParentControlInfo function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

7.5CVSS0.00324EPSS
Exploits1References1
NVD
NVD
•added 2025/11/10 5:15 p.m.•7 views

CVE-2025-63455

Tenda AX-3 v16.03.12.10CN was discovered to contain a stack overflow via the shareSpeed parameter in the fromSetWifiGusetBasic function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

7.5CVSS0.00342EPSS
Exploits1References1
NVD
NVD
•added 2025/11/10 4:15 p.m.•5 views

CVE-2025-63152

Tenda AX3 V16.03.12.10CN was discovered to contain a stack overflow in the wpapskcrypto parameter of the wlSetExternParameter function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

7.5CVSS0.00331EPSS
Exploits1References1
OSV
OSV
•added 2025/11/10 4:15 p.m.•3 views

CVE-2025-63154

TOTOLink A7000R V9.1.0u.6115B20201022 was discovered to contain a stack overflow in the addEffect parameter of the urldecode function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted POST request...

7.5CVSS5.8AI score0.00331EPSS
Exploits1References1
OSV
OSV
•added 2025/11/10 4:15 p.m.•3 views

CVE-2025-63153

TOTOLink A7000R V9.1.0u.6115B20201022 was discovered to contain a stack overflow in the ssid parameter of the urldecode function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

7.5CVSS5.9AI score0.00331EPSS
Exploits1References1
OSV
OSV
•added 2025/11/10 4:15 p.m.•4 views

CVE-2025-63152

Tenda AX3 V16.03.12.10CN was discovered to contain a stack overflow in the wpapskcrypto parameter of the wlSetExternParameter function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

7.5CVSS5.9AI score0.00331EPSS
Exploits1References1
NVD
NVD
•added 2025/11/10 4:15 p.m.•5 views

CVE-2025-63154

TOTOLink A7000R V9.1.0u.6115B20201022 was discovered to contain a stack overflow in the addEffect parameter of the urldecode function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted POST request...

7.5CVSS0.00331EPSS
Exploits1References1
Hacker One
Hacker One
•added 2025/11/10 1:36 p.m.•21 views

curl: Unsafe use of strcpy in Curl_ldap_err2string (packages/OS400/os400sys.c) — stack-buffer-overflow (PoC + ASan)

I've provided the detailed description and clear steps previously, but it seems you need the content tailored directly for the submission form's fields. I will present the complete, professional, and detailed response suitable for reporting a memory corruption vulnerability to a vendor or bug...

8.3AI score
Exploits0
Rosalinux
Rosalinux
•added 2025/11/10 6:15 a.m.•8 views

Advisory ROSA-SA-2025-3057

Software: xmlrpc-c 1.51.0 OS: ROSA Virtualization 3.1 unaffected versions = xmlrpc-c-1.51.0-11.0.1.rv31 affected versions xmlrpc-c-1.51.0-11.0.1.rv31 CVE-ID: CVE-2024-8176 BDU-ID: CVE-Crit: HIGH CVE-DESC.: A vulnerability in the libexpat XML file parsing library is related to a stack-based buffer...

7.5CVSS8.9AI score0.01569EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2025/11/10 12:0 a.m.•6 views

Delta Electronics CNCSoft-G2 DOPSoft DPAX File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Electronics CNCSoft-G2. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS7AI score0.00361EPSS
Exploits0References1
Positive Technologies
Positive Technologies
•added 2025/11/10 12:0 a.m.•5 views

PT-2025-46177

Name of the Vulnerable Software and Affected Versions Tenda AC18 version 15.03.05.05 multi Description A stack-based buffer overflow issue exists in Tenda AC18 version 15.03.05.05 multi. The issue is located in the guestSsid parameter of the /goform/WifiGuestSet API endpoint. Sending oversized da...

8.2AI score0.00567EPSS
Exploits1References4
CNNVD
CNNVD
•added 2025/11/10 12:0 a.m.•4 views

Tenda AC18 å®‰å…Øę¼ę“ž

Tenda AC18 is a dual-band wireless router launched by Shenzhen Jixiang Tenda Technology Co. in July 2016, mainly for villas and large home users. Tenda AC18 has a stack buffer overflow vulnerability, which originates from the /goform/WifiGuestSet interface guestSsid parameter fails to correctly...

8.8CVSS8.1AI score0.00567EPSS
Exploits1References2
CVE
CVE
•added 2025/11/10 12:0 a.m.•10 views

CVE-2025-63455

The CVE-2025-63455 entry concerns Tenda AX-3 devices (v16.03.12.10_CN) with a stack overflow in the fromSetWifiGusetBasic function via the shareSpeed parameter, enabling a crafted request to cause a Denial of Service. Multiple connected sources (CNVD, RH, CIRCL, EUVD, NVD, CNNVD, CVELIST, etc.) c...

7.5CVSS7.2AI score0.00342EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
•added 2025/11/10 12:0 a.m.•4 views

CVE-2025-63149

Tenda AX3 V16.03.12.10CN was discovered to contain a stack overflow in the urls parameter of the getparentControllistInfo function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

0.00331EPSS
Exploits1References1
CVE
CVE
•added 2025/11/10 12:0 a.m.•11 views

CVE-2025-63147

CVE-2025-63147 affects Tenda AX3 (V16.03.12.10_CN). Connected sources describe a stack overflow in the deviceId parameter of the saveParentControlInfo function, exploitable to cause Denial of Service via a crafted request. The vulnerability is confirmed across CNVD, Red Hat CVE, CIRCL, EUVD, NVD,...

7.5CVSS7.2AI score0.00324EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
•added 2025/11/10 12:0 a.m.•5 views

PT-2025-46172

Name of the Vulnerable Software and Affected Versions TOTOLink A7000R version 9.1.0u.6115 B20201022 Description A stack overflow exists in the urldecode function, specifically within the addEffect parameter. This issue allows attackers to trigger a Denial of Service DoS by sending a specially...

6.6AI score0.00331EPSS
Exploits1References6
Positive Technologies
Positive Technologies
•added 2025/11/10 12:0 a.m.•7 views

PT-2025-46171

Name of the Vulnerable Software and Affected Versions TOTOLink A7000R version 9.1.0u.6115 B20201022 Description The TOTOLink A7000R router firmware contains a stack overflow in the ssid parameter of the urldecode function. This issue allows attackers to cause a Denial of Service DoS through a...

6.9AI score0.00331EPSS
Exploits1References6
Rows per page
Query Builder