Lucene search
K

34179 matches found

RedhatCVE
RedhatCVE
added 2026/03/27 10:51 p.m.4 views

CVE-2026-4903

A flaw has been found in Tenda AC5 15.03.06.47. This vulnerability affects the function formQuickIndex of the file /goform/QuickIndex of the component POST Request Handler. This manipulation of the argument PPPOEPassword causes stack-based buffer overflow. The attack may be initiated remotely. Th...

9CVSS7.9AI score0.05461EPSS
Exploits1References1
EUVD
EUVD
added 2026/03/27 9:31 p.m.2 views

EUVD-2026-16811

A vulnerability has been found in Tenda AC15 15.03.05.19. This affects the function formSetCfm of the file /goform/setcfm of the component POST Request Handler. The manipulation of the argument funcpara1 leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has...

9CVSS7.9AI score0.00632EPSS
Exploits1References6
NVD
NVD
added 2026/03/27 8:16 p.m.4 views

CVE-2026-4974

A flaw has been found in Tenda AC7 15.03.06.44. Affected by this issue is the function fromSetSysTime of the file /goform/SetSysTimeCfg of the component POST Request Handler. Executing a manipulation of the argument Time can lead to stack-based buffer overflow. It is possible to launch the attack...

9CVSS0.00632EPSS
Exploits1References5
NVD
NVD
added 2026/03/27 8:16 p.m.4 views

CVE-2026-4975

A vulnerability has been found in Tenda AC15 15.03.05.19. This affects the function formSetCfm of the file /goform/setcfm of the component POST Request Handler. The manipulation of the argument funcpara1 leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has...

9CVSS0.00632EPSS
Exploits1References5
CVE
CVE
added 2026/03/27 7:52 p.m.5 views

CVE-2026-4975

The CVE-2026-4975 entry affects the Tenda AC15 device (firmware 15.03.05.19). It targets the POST handler at /goform/setcfm, specifically the formSetCfm function, where manipulating the funcpara1 argument causes a stack-based buffer overflow. Impact is defined as high for confidentiality, integri...

9CVSS7.9AI score0.00632EPSS
Exploits1References5Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/03/27 7:52 p.m.2 views

CVE-2026-4974

A flaw has been found in Tenda AC7 15.03.06.44. Affected by this issue is the function fromSetSysTime of the file /goform/SetSysTimeCfg of the component POST Request Handler. Executing a manipulation of the argument Time can lead to stack-based buffer overflow. It is possible to launch the attack...

9CVSS6.5AI score0.00632EPSS
Exploits1References5Affected Software1
CVE
CVE
added 2026/03/27 7:52 p.m.9 views

CVE-2026-4974

CVE-2026-4974 affects Tenda AC7 firmware version 15.03.06.44. The vulnerability is in the function fromSetSysTime of /goform/SetSysTimeCfg in the POST Request Handler, where manipulating the Time argument can cause a stack-based buffer overflow. This enables remote code execution over the network...

9CVSS7.8AI score0.00632EPSS
Exploits1References5Affected Software1
EUVD
EUVD
added 2026/03/27 6:31 p.m.3 views

EUVD-2026-16724

A vulnerability was identified in Tenda AC6 15.03.05.16. Affected by this vulnerability is the function formQuickIndex of the file /goform/QuickIndex of the component POST Request Handler. The manipulation of the argument PPPOEPassword leads to stack-based buffer overflow. The attack is possible ...

9CVSS7.9AI score0.00773EPSS
Exploits1References6
IBM Security Bulletins
IBM Security Bulletins
added 2026/03/27 5:32 p.m.12 views

Security Bulletin: IBM App Connect Enterprise is vulnerable to multiple vulnerabilities due to Node.js module Multer (CVE-2026-2359, CVE-2026-3304 & CVE-2026-3520)

Summary The IBM App Connect Enterprise Connector Discovery and OpenAPI Editor is vulnerable to multiple vulnerabilities due to Node.js module Multer. Vulnerability Details CVEID:CVE-2026-2359 DESCRIPTION: Multer is a node.js middleware for handling multipart/form-data. A vulnerability in Multer...

8.7CVSS6AI score0.00713EPSS
Exploits1Affected Software1
NVD
NVD
added 2026/03/27 5:16 p.m.3 views

CVE-2026-4961

A vulnerability was identified in Tenda AC6 15.03.05.16. Affected by this vulnerability is the function formQuickIndex of the file /goform/QuickIndex of the component POST Request Handler. The manipulation of the argument PPPOEPassword leads to stack-based buffer overflow. The attack is possible ...

9CVSS0.00773EPSS
Exploits1References5
NVD
NVD
added 2026/03/27 5:16 p.m.5 views

CVE-2026-4960

A vulnerability was determined in Tenda AC6 15.03.05.16. Affected is the function fromWizardHandle of the file /goform/WizardHandle of the component POST Request Handler. Executing a manipulation of the argument WANT/WANS can lead to stack-based buffer overflow. The attack can be executed remotel...

9CVSS0.00773EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2026/03/27 5:9 p.m.4 views

CVE-2026-22593

EVerest is an EV charging software stack. Prior to version 2026.02.0, an off-by-one check in IsoMux certificate filename handling causes a stack-based buffer overflow when a filename length equals MAXFILENAMELENGTH 100. A crafted filename in the certificate directory can overflow filenamesidx,...

8.4CVSS6.3AI score0.00138EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/03/27 4:9 p.m.21 views

CVE-2026-4961 Tenda AC6 POST Request QuickIndex formQuickIndex stack-based overflow

A vulnerability was identified in Tenda AC6 15.03.05.16. Affected by this vulnerability is the function formQuickIndex of the file /goform/QuickIndex of the component POST Request Handler. The manipulation of the argument PPPOEPassword leads to stack-based buffer overflow. The attack is possible ...

9CVSS0.00773EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2026/03/27 4:9 p.m.2 views

CVE-2026-4961 Tenda AC6 POST Request QuickIndex formQuickIndex stack-based overflow

A vulnerability was identified in Tenda AC6 15.03.05.16. Affected by this vulnerability is the function formQuickIndex of the file /goform/QuickIndex of the component POST Request Handler. The manipulation of the argument PPPOEPassword leads to stack-based buffer overflow. The attack is possible ...

9CVSS7.9AI score0.00773EPSS
Exploits1References5
Cvelist
Cvelist
added 2026/03/27 4:9 p.m.19 views

CVE-2026-4960 Tenda AC6 POST Request WizardHandle fromWizardHandle stack-based overflow

A vulnerability was determined in Tenda AC6 15.03.05.16. Affected is the function fromWizardHandle of the file /goform/WizardHandle of the component POST Request Handler. Executing a manipulation of the argument WANT/WANS can lead to stack-based buffer overflow. The attack can be executed remotel...

9CVSS0.00773EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2026/03/27 4:9 p.m.7 views

CVE-2026-4960 Tenda AC6 POST Request WizardHandle fromWizardHandle stack-based overflow

A vulnerability was determined in Tenda AC6 15.03.05.16. Affected is the function fromWizardHandle of the file /goform/WizardHandle of the component POST Request Handler. Executing a manipulation of the argument WANT/WANS can lead to stack-based buffer overflow. The attack can be executed remotel...

9CVSS8AI score0.00773EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2026/03/27 4:9 p.m.3 views

CVE-2026-4960

A vulnerability was determined in Tenda AC6 15.03.05.16. Affected is the function fromWizardHandle of the file /goform/WizardHandle of the component POST Request Handler. Executing a manipulation of the argument WANT/WANS can lead to stack-based buffer overflow. The attack can be executed remotel...

9CVSS8AI score0.00773EPSS
Exploits1References5Affected Software1
CVE
CVE
added 2026/03/27 4:9 p.m.14 views

CVE-2026-4960

The CVE-2026-4960 entry concerns Tenda AC6 firmware (15.03.05.16) with a vulnerability in the POST Request Handler’s WizardHandle component. Specifically, the fromWizardHandle function processes the WANT/WANS argument in /goform/WizardHandle; manipulating this input can cause a stack-based buffer...

9CVSS8AI score0.00773EPSS
Exploits1References5Affected Software1
RedhatCVE
RedhatCVE
added 2026/03/27 2:25 p.m.6 views

CVE-2021-27434

Products with Unified Automation .NET based OPC UA Client/Server SDK Bundle: Versions V3.0.7 and prior .NET 4.5, 4.0, and 3.5 Framework versions only are vulnerable to an uncontrolled recursion, which may allow an attacker to trigger a stack overflow...

7.5CVSS6.8AI score0.01741EPSS
Exploits0References1
OSV
OSV
added 2026/03/27 2:3 p.m.5 views

OESA-2026-1721 ImageMagick security update

Use ImageMagick to create, edit, compose, or convert bitmap images. It can read and write images in a variety of formats over 200 including PNG, JPEG, GIF, HEIC, TIFF, DPX, EXR, WebP, Postscript, PDF, and SVG. Use ImageMagick to resize, flip, mirror, rotate, distort, shear and transform images,...

7.5CVSS6.7AI score0.00475EPSS
Exploits0References5
Rows per page
Query Builder