CVE-2024-2903

CVE-2024-2903 affects Tenda AC7 firmware version 15.03.06.44. A stack-based buffer overflow is triggered in the GetParentControlInfo function located at /goform/GetParentControlInfo via manipulation of the mac argument. The vulnerability permits remote code execution or crash, with a publicly dis...

CVE-2024-2901

A vulnerability has been found in Tenda AC7 15.03.06.44 and classified as critical. This vulnerability affects the function setSchedWifi of the file /goform/openSchedWifi. The manipulation of the argument schedEndTime leads to stack-based buffer overflow. The attack can be initiated remotely. The...

CVE-2024-2902

CVE-2024-2902 affects Tenda AC7 firmware version 15.03.06.44. The vulnerability is in the function fromSetWifiGusetBasic within /goform/WifiGuestSet, where manipulating the shareSpeed argument causes a stack-based buffer overflow. Exploitation can be performed remotely and the vulnerability has b...

CVE-2024-2899

CVE-2024-2899 affects Tenda AC7 (v15.03.06.44). The vulnerability resides in the fromSetWirelessRepeat function within /goform/WifiExtraSet, where manipulation of the wpapsk_crypto parameter leads to a stack-based buffer overflow. A remote attacker could exploit this, and public disclosures exist...

CVE-2024-2896

A vulnerability was found in Tenda AC7 15.03.06.44. It has been rated as critical. This issue affects the function formWifiWpsStart of the file /goform/WifiWpsStart. The manipulation of the argument index leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has...

CVE-2024-2895

A vulnerability was found in Tenda AC7 15.03.06.44. It has been declared as critical. This vulnerability affects the function formWifiWpsOOB of the file /goform/WifiWpsOOB. The manipulation of the argument index leads to stack-based buffer overflow. The attack can be initiated remotely. The explo...

CVE-2024-2896 Tenda AC7 WifiWpsStart formWifiWpsStart stack-based overflow

A vulnerability was found in Tenda AC7 15.03.06.44. It has been rated as critical. This issue affects the function formWifiWpsStart of the file /goform/WifiWpsStart. The manipulation of the argument index leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has...

CVE-2024-2895

CVE-2024-2895 affects the Tenda AC7 (firmware 15.03.06.44). The vulnerability is in the function formWifiWpsOOB of /goform/WifiWpsOOB, where manipulation of the index argument causes a stack-based buffer overflow. The issue enables remote exploitation and has public exploit details. CVSS metrics ...

CVE-2024-2893

A vulnerability was found in Tenda AC7 15.03.06.44 and classified as critical. Affected by this issue is the function formSetDeviceName of the file /goform/SetOnlineDevName. The manipulation of the argument devName leads to stack-based buffer overflow. The attack may be launched remotely. The...

CVE-2024-2894

The CVE-2024-2894 entry affects Tenda AC7, specifically the stack-based buffer overflow in the function formSetQosBand within /goform/SetNetControlList (version 15.03.06.44). The vulnerability can be triggered remotely by manipulating the list argument, leading to potential full confidentiality, ...

CVE-2024-2892

A vulnerability has been found in Tenda AC7 15.03.06.44 and classified as critical. Affected by this vulnerability is the function formSetCfm of the file /goform/setcfm. The manipulation of the argument funcpara1 leads to stack-based buffer overflow. The attack can be launched remotely. The explo...

CVE-2024-2891

CVE-2024-2891 affects the Tenda AC7 (firmware 15.03.06.44). The issue resides in the function formQuickIndex of /goform/QuickIndex, where manipulating the PPPOEPassword argument causes a stack-based buffer overflow. This can be exploited remotely, and the exploit has been disclosed publicly (VDB-...

openSUSE: Security Advisory for vim (SUSE-SU-2024:0871-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2024-2856

The CVE-2024-2856 vulnerability affects Tenda AC10 firmware 16.03.10.13/16.03.10.20. The issue is in the function fromSetSysTime of /goform/SetSysTimeCfg, where manipulating the timeZone parameter causes a stack-based buffer overflow. It can be triggered remotely and public exploits have been dis...

CVE-2024-2855

A vulnerability classified as critical was found in Tenda AC15 15.03.05.18/15.03.05.19/15.03.20. Affected by this vulnerability is the function fromSetSysTime of the file /goform/SetSysTimeCfg. The manipulation of the argument time leads to stack-based buffer overflow. The attack can be launched...

CVE-2024-2852

A vulnerability was found in Tenda AC15 15.03.20multi. It has been declared as critical. This vulnerability affects the function saveParentControlInfo of the file /goform/saveParentControlInfo. The manipulation of the argument urls leads to stack-based buffer overflow. The attack can be initiated...

CVE-2024-2850 Tenda AC15 saveParentControlInfo stack-based overflow

A vulnerability was found in Tenda AC15 15.03.05.18 and classified as critical. Affected by this issue is the function saveParentControlInfo of the file /goform/saveParentControlInfo. The manipulation of the argument urls leads to stack-based buffer overflow. The attack may be launched remotely...

CVE-2024-2850 Tenda AC15 saveParentControlInfo stack-based overflow

A vulnerability was found in Tenda AC15 15.03.05.18 and classified as critical. Affected by this issue is the function saveParentControlInfo of the file /goform/saveParentControlInfo. The manipulation of the argument urls leads to stack-based buffer overflow. The attack may be launched remotely...

CVE-2024-1848

Heap-based Buffer Overflow, Memory Corruption, Out-Of-Bounds Read, Out-Of-Bounds Write, Stack-based Buffer Overflow, Type Confusion, Uninitialized Variable, Use-After-Free vulnerabilities exist in the file reading procedure in SOLIDWORKS Desktop on Release SOLIDWORKS 2024. These vulnerabilities...

CVE-2024-2815

CVE-2024-2815 affects Tenda AC15, specifically the R7WebsSecurityHandler in /goform/execCommand. The vulnerability stems from a stack-based buffer overflow caused by manipulating the password argument, enabling remote exploitation. Public exploit information is indicated in the entry. Connected s...