CVE-2024-4114

A vulnerability, which was classified as critical, has been found in Tenda TX9 22.03.02.10. This issue affects the function sub42C014 of the file /goform/PowerSaveSet. The manipulation of the argument time leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has...

CVE-2024-4113

A vulnerability classified as critical was found in Tenda TX9 22.03.02.10. This vulnerability affects the function sub42D4DC of the file /goform/SetSysTimeCfg. The manipulation of the argument time leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been...

CVE-2024-4113

CVE-2024-4113 affects Tenda TX9 v22.03.02.10. The issue is in the function sub_42D4DC of /goform/SetSysTimeCfg, where manipulating the argument time causes a stack-based buffer overflow. It can be exploited remotely and the exploit has been disclosed publicly. Public documents do not provide a pa...

CVE-2024-4112

CVE-2024-4112 affects Tenda TX9 v22.03.02.10, specifically the sub_42CB94 function in /goform/SetVirtualServerCfg. The issue is a stack-based buffer overflow caused by handling the list parameter, allowing remote exploitation. Public disclosures exist and the vulnerability is tracked under VDB-26...

CVE-2024-4111 Tenda TX9 SetLEDCfg sub_42BD7C stack-based overflow

A vulnerability was found in Tenda TX9 22.03.02.10. It has been rated as critical. Affected by this issue is the function sub42BD7C of the file /goform/SetLEDCfg. The manipulation of the argument time leads to stack-based buffer overflow. The attack may be launched remotely. The exploit has been...

CVE-2024-4111

The vulnerability CVE-2024-4111 affects Tenda TX9 (firmware 22.03.02.10). Specifically, the sub_42BD7C function in /goform/SetLEDCfg mishandles the time argument, causing a stack-based buffer overflow. This can potentially be exploited remotely and is reported as high severity with public exploit...

CVE-2024-4065

A vulnerability was found in Tenda AC8 16.03.34.09. It has been rated as critical. This issue affects the function formSetRebootTimer of the file /goform/SetRebootTimer. The manipulation of the argument rebootTime leads to stack-based buffer overflow. The attack may be initiated remotely. The...

CVE-2024-4064

A vulnerability was found in Tenda AC8 16.03.34.09. It has been declared as critical. This vulnerability affects the function R7WebsSecurityHandler of the file /goform/execCommand. The manipulation of the argument password leads to stack-based buffer overflow. The attack can be initiated remotely...

CVE-2024-4065

The CVE-2024-4065 entry concerns the Tenda AC8 firmware (16.03.34.09) with a stack-based buffer overflow in the formSetRebootTimer function exposed via /goform/SetRebootTimer. The rebootTime parameter manipulation can be exploited remotely to run arbitrary code. Multiple sources confirm remote at...

CVE-2024-4064

CVE-2024-4064 affects Tenda AC8 16.03.34.09. The R7WebsSecurityHandler function in /goform/execCommand mishandles the password parameter, causing a stack-based buffer overflow. This enables remote exploitation; the exploit has been disclosed publicly. Multiple sources (NVD, Red Hat, CNVD, CNNVD, ...

CVE-2024-4064 Tenda AC8 execCommand R7WebsSecurityHandler stack-based overflow

A vulnerability was found in Tenda AC8 16.03.34.09. It has been declared as critical. This vulnerability affects the function R7WebsSecurityHandler of the file /goform/execCommand. The manipulation of the argument password leads to stack-based buffer overflow. The attack can be initiated remotely...

CVE-2024-33215

Tenda FH1206 V1.2.0.88155EN was discovered to contain a stack-based buffer overflow vulnerability via the mitInterface parameter in ip/goform/addressNat...

CVE-2024-33212

Tenda FH1206 V1.2.0.88155EN was discovered to contain a stack-based buffer overflow vulnerability via the funcpara1 parameter in ip/goform/setcfm...

CVE-2024-33214

Tenda FH1206 V1.2.0.88155EN was discovered to contain a stack-based buffer overflow vulnerability via the entrys parameter in ip/goform/RouteStatic...

CVE-2024-33212

Tenda FH1206 V1.2.0.88155EN was discovered to contain a stack-based buffer overflow vulnerability via the funcpara1 parameter in ip/goform/setcfm...

CVE-2024-33212

Summary (CVE-2024-33212) The issue affects the Tenda FH1206 router (version 1.2.0.8(8155)_EN). A stack-based buffer overflow exists in the IP management endpoint ip/goform/setcfm when processing the funcpara1 parameter. The vulnerability is characterized as a stack overflow that could lead to arb...

CVE-2023-4232 Ofono: sms decoder stack-based buffer overflow remote code execution vulnerability within the decode_status_report() function

A flaw was found in ofono, an Open Source Telephony on Linux. A stack overflow bug is triggered within the decodestatusreport function during the SMS decoding. It is assumed that the attack scenario is accessible from a compromised modem, a malicious base station, or just SMS. There is a bound...

CVE-2024-3910

A vulnerability, which was classified as critical, has been found in Tenda AC500 2.0.1.91307. Affected by this issue is the function fromDhcpListClient of the file /goform/DhcpListClient. The manipulation of the argument page leads to stack-based buffer overflow. The attack may be launched...

CVE-2024-3909

A vulnerability classified as critical was found in Tenda AC500 2.0.1.91307. Affected by this vulnerability is the function formexeCommand of the file /goform/execCommand. The manipulation of the argument cmdinput leads to stack-based buffer overflow. The attack can be launched remotely. The...

CVE-2024-3910

CVE-2024-3910 affects Tenda AC500 2.0.1.9(1307). The flaw is in the fromDhcpListClient function (file /goform/DhcpListClient) where manipulating the page parameter causes a stack-based buffer overflow. Impact is described as remote code execution with high severity/impact across confidentiality, ...