136 matches found
CVE-2024-41465
CVE-2024-41465 affects Tenda FH1201 firmware 1.2.0.14. The vulnerability is a stack-based buffer overflow in the funcpara1 parameter exposed by the ip/goform/setcfm endpoint. Root cause: improper handling of input to funcpara1 leading to overflow. Impact (per CVSS/linked sources): high availabili...
CVE-2024-33182
Tenda AC18 V15.03.3.10EN was discovered to contain a stack-based buffer overflow vulnerability via the deviceId parameter at ip/goform/addWifiMacFilter...
CVE-2024-33181
Tenda AC18 V15.03.3.10EN was discovered to contain a stack-based buffer overflow vulnerability via the deviceMac parameter at ip/goform/addWifiMacFilter...
CVE-2024-34945
Tenda FH1206 V1.2.0.88155EN was discovered to contain a stack-based buffer overflow vulnerability via the PPW parameter at ip/goform/WizardHandle...
CVE-2024-34942
Tenda FH1206 router (firmware 1.2.0.8(8155) EN) contains a stack-based buffer overflow in the ip/goform/exeCommand endpoint, triggered by the funcpara1 parameter. This could allow arbitrary code execution or a denial of service. Exploitation status is not provided in the documents; no exploit det...
CVE-2024-34946
CVE-2024-34946 affects the Tenda FH1206 router (version 1.2.0.8(8155) EN). The root cause is a stack-based buffer overflow in the page parameter of ip/goform/DhcpListClient, exposing the device to memory corruption and potential remote impact. Public sources describe exploitation that could lead ...
Unspecified Vulnerability in D-Link DAP-2622 (CNVD-2024-24416)
The D-Link DAP-2622 is a wireless access point Access Point device from China's D-Link. A security vulnerability exists in the D-Link DAP-2622 that stems from a stack-based buffer overflow remote code execution vulnerability in the DDP Set Date Time NTP server. An attacker could exploit the...
CVE-2024-33213
Tenda FH1206 V1.2.0.88155EN was discovered to contain a stack-based buffer overflow vulnerability via the mitInterface parameter in ip/goform/RouteStatic...
CVE-2024-33215
Tenda FH1206 V1.2.0.88155EN was discovered to contain a stack-based buffer overflow vulnerability via the mitInterface parameter in ip/goform/addressNat...
CVE-2024-33215
Tenda FH1206 V1.2.0.88155EN was discovered to contain a stack-based buffer overflow vulnerability via the mitInterface parameter in ip/goform/addressNat...
CVE-2024-33217
CVE-2024-33217 affects Tenda FH1206 (1.2.0.8(8155) EN). A stack-based buffer overflow exists in the ip/goform/addressNat endpoint, triggered via the page parameter in fromAddressNat. The root cause is improper input validation leading to potential overflow. Documented impacts include possible den...
SonicWALL SonicOS Buffer Error Vulnerability
SonicWALL SonicOS is a suite of operating systems from SonicWALL, Inc. designed for SonicWall firewall appliances. A security vulnerability exists in SonicWALL SonicOS that stems from a stack-based buffer overflow vulnerability in the getPacketReplayData.json URL endpoint that causes the firewall...
CVE-2022-47390
An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution...
CVE-2022-47381
An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution...
CVE-2022-47384
An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution...
Stack overflow
An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution...
Stack overflow
An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution...
Stack overflow
An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution...
Stack overflow
An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution...
Stack overflow
An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution...