34197 matches found
CVE-2025-63147
Tenda AX3 V16.03.12.10CN was discovered to contain a stack overflow in the deviceId parameter of the saveParentControlInfo function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...
CVE-2025-63455
Tenda AX-3 v16.03.12.10CN was discovered to contain a stack overflow via the shareSpeed parameter in the fromSetWifiGusetBasic function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...
CVE-2025-63456
Tenda AX-1803 v1.0.0.1 was discovered to contain a stack overflow via the time parameter in the SetSysTimeCfg function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...
CVE-2025-63147
Tenda AX3 V16.03.12.10CN was discovered to contain a stack overflow in the deviceId parameter of the saveParentControlInfo function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...
CVE-2025-63455
Tenda AX-3 v16.03.12.10CN was discovered to contain a stack overflow via the shareSpeed parameter in the fromSetWifiGusetBasic function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...
CVE-2025-63152
Tenda AX3 V16.03.12.10CN was discovered to contain a stack overflow in the wpapskcrypto parameter of the wlSetExternParameter function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...
CVE-2025-63154
TOTOLink A7000R V9.1.0u.6115B20201022 was discovered to contain a stack overflow in the addEffect parameter of the urldecode function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted POST request...
CVE-2025-63153
TOTOLink A7000R V9.1.0u.6115B20201022 was discovered to contain a stack overflow in the ssid parameter of the urldecode function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...
CVE-2025-63152
Tenda AX3 V16.03.12.10CN was discovered to contain a stack overflow in the wpapskcrypto parameter of the wlSetExternParameter function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...
CVE-2025-63154
TOTOLink A7000R V9.1.0u.6115B20201022 was discovered to contain a stack overflow in the addEffect parameter of the urldecode function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted POST request...
curl: Unsafe use of strcpy in Curl_ldap_err2string (packages/OS400/os400sys.c) ā stack-buffer-overflow (PoC + ASan)
I've provided the detailed description and clear steps previously, but it seems you need the content tailored directly for the submission form's fields. I will present the complete, professional, and detailed response suitable for reporting a memory corruption vulnerability to a vendor or bug...
Advisory ROSA-SA-2025-3057
Software: xmlrpc-c 1.51.0 OS: ROSA Virtualization 3.1 unaffected versions = xmlrpc-c-1.51.0-11.0.1.rv31 affected versions xmlrpc-c-1.51.0-11.0.1.rv31 CVE-ID: CVE-2024-8176 BDU-ID: CVE-Crit: HIGH CVE-DESC.: A vulnerability in the libexpat XML file parsing library is related to a stack-based buffer...
Delta Electronics CNCSoft-G2 DOPSoft DPAX File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Electronics CNCSoft-G2. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...
PT-2025-46177
Name of the Vulnerable Software and Affected Versions Tenda AC18 version 15.03.05.05 multi Description A stack-based buffer overflow issue exists in Tenda AC18 version 15.03.05.05 multi. The issue is located in the guestSsid parameter of the /goform/WifiGuestSet API endpoint. Sending oversized da...
Tenda AC18 å®å Øę¼ę“
Tenda AC18 is a dual-band wireless router launched by Shenzhen Jixiang Tenda Technology Co. in July 2016, mainly for villas and large home users. Tenda AC18 has a stack buffer overflow vulnerability, which originates from the /goform/WifiGuestSet interface guestSsid parameter fails to correctly...
CVE-2025-63455
The CVE-2025-63455 entry concerns Tenda AX-3 devices (v16.03.12.10_CN) with a stack overflow in the fromSetWifiGusetBasic function via the shareSpeed parameter, enabling a crafted request to cause a Denial of Service. Multiple connected sources (CNVD, RH, CIRCL, EUVD, NVD, CNNVD, CVELIST, etc.) c...
CVE-2025-63149
Tenda AX3 V16.03.12.10CN was discovered to contain a stack overflow in the urls parameter of the getparentControllistInfo function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...
CVE-2025-63147
CVE-2025-63147 affects Tenda AX3 (V16.03.12.10_CN). Connected sources describe a stack overflow in the deviceId parameter of the saveParentControlInfo function, exploitable to cause Denial of Service via a crafted request. The vulnerability is confirmed across CNVD, Red Hat CVE, CIRCL, EUVD, NVD,...
PT-2025-46172
Name of the Vulnerable Software and Affected Versions TOTOLink A7000R version 9.1.0u.6115 B20201022 Description A stack overflow exists in the urldecode function, specifically within the addEffect parameter. This issue allows attackers to trigger a Denial of Service DoS by sending a specially...
PT-2025-46171
Name of the Vulnerable Software and Affected Versions TOTOLink A7000R version 9.1.0u.6115 B20201022 Description The TOTOLink A7000R router firmware contains a stack overflow in the ssid parameter of the urldecode function. This issue allows attackers to cause a Denial of Service DoS through a...