CVE-2024-40414

A vulnerability in /goform/SetNetControlList in the sub656BC function in Tenda AX1806 1.0.0.1 firmware leads to stack-based buffer overflow...

CVE-2024-40414

A vulnerability in /goform/SetNetControlList in the sub656BC function in Tenda AX1806 1.0.0.1 firmware leads to stack-based buffer overflow...

CVE-2024-40416

A vulnerability in /goform/SetVirtualServerCfg in the sub6320C function in Tenda AX1806 1.0.0.1 firmware leads to stack-based buffer overflow...

CVE-2024-40415

A vulnerability in /goform/SetStaticRouteCfg in the sub519F4 function in Tenda AX1806 1.0.0.1 firmware leads to stack-based buffer overflow...

CVE-2024-40415

A vulnerability in /goform/SetStaticRouteCfg in the sub519F4 function in Tenda AX1806 1.0.0.1 firmware leads to stack-based buffer overflow...

CVE-2024-40416

The CVE-2024-40416 entry affects Tenda AX1806 firmware 1.0.0.1, with a stack-based buffer overflow in /goform/SetVirtualServerCfg (sub_6320C). This can allow an attacker to potentially execute arbitrary code or cause a denial of service. The vulnerability is documented across multiple sources (CN...

EulerOS 2.0 SP10 : glibc (EulerOS-SA-2024-1883)

According to the versions of the glibc packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : The iconv function in the GNU C Library versions 2.39 and older may overflow the output buffer passed to it by up to 4 bytes when converting string...

CVE-2024-39556

Summary of CVE-2024-39556 : A stack-based buffer overflow vulnerability in Juniper Networks Junos OS and Junos OS Evolved allows a local, low-privileged attacker with CLI access to load a crafted certificate via the set security certificates command, potentially crashing the command management da...

CVE-2024-39556 Junos OS and Junos OS Evolved: Loading a malicious certificate from the CLI may result in a stack-based overflow

A Stack-Based Buffer Overflow vulnerability in Juniper Networks Junos OS and Juniper Networks Junos OS Evolved may allow a local, low-privileged attacker with access to the CLI the ability to load a malicious certificate file, leading to a limited Denial of Service DoS or privileged code executio...

CVE-2024-40417

A vulnerability was found in Tenda AX1806 1.0.0.1. Affected by this issue is the function formSetRebootTimer of the file /goform/SetIpMacBind. The manipulation of the argument list leads to stack-based buffer overflow...

15 vulnerabilities discovered in software development kit for wireless routers

Cisco Talos Vulnerability Research team recently discovered 15 vulnerabilities in the Realtek rtl819x Jungle software development kit used in some small and home office wireless routers. This SDK uses the discontinued, open-source Boa as its web server. Talos researchers discovered these...

CVE-2024-40417

A vulnerability was found in Tenda AX1806 1.0.0.1. Affected by this issue is the function formSetRebootTimer of the file /goform/SetIpMacBind. The manipulation of the argument list leads to stack-based buffer overflow...

CVE-2024-40417

CVE-2024-40417 affects Tenda AX1806 (version 1.0.0.1). The vulnerability is in the function formSetRebootTimer of the file /goform/SetIpMacBind, where manipulating the argument list leads to a stack-based buffer overflow. This is described across multiple sources as enabling a potential denial of...

CVE-2024-39880 Stack-based Buffer Overflow in Delta Electronics CNCSoft-G2

Delta Electronics CNCSoft-G2 lacks proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. If a target visits a malicious page or opens a malicious file an attacker can leverage this vulnerability to execute code in the context of the curren...

CVE-2024-37997

A vulnerability has been identified in JT Open All versions V11.5, JT2Go All versions V2406.0003, PLM XML SDK All versions V7.1.0.014, Teamcenter Visualization V14.2 All versions V14.2.0.13, Teamcenter Visualization V14.3 All versions V14.3.0.11, Teamcenter Visualization V2312 All versions...

CVE-2024-37997

A vulnerability has been identified in JT Open All versions V11.5, JT2Go All versions V2406.0003, PLM XML SDK All versions V7.1.0.014, Teamcenter Visualization V14.2 All versions V14.2.0.13, Teamcenter Visualization V14.3 All versions V14.3.0.11, Teamcenter Visualization V2312 All versions...

CVE-2024-37997

CVE-2024-37997 affects Siemens JT Open Toolkit family (JT Open, JT2Go, PLM XML SDK, Teamcenter Visualization components). A stack-based overflow when parsing crafted XML enables code execution in the current process. Affected versions include JT Open (< V11.5), JT2Go (< V2406.0003), PLM XML...

Siemens RUGGEDCOM APE 1808

As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories CERT Services | Services |...

CVE-2023-50243

Two stack-based buffer overflow vulnerabilities exist in the boa formIpQoS functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of HTTP requests can lead to remote code execution. An attacker can send a series of HTTP requests to trigger these vulnerabilities.This...

CVE-2023-50330

A stack-based buffer overflow vulnerability exists in the boa getInfo functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of HTTP requests can lead to remote code execution. An attacker can send a series of HTTP requests to trigger this vulnerability...