Lucene search
K

98 matches found

CNNVD
CNNVD
added 2025/06/16 12:0 a.m.3 views

TOTOLINK X15 安全漏洞

TOTOLINK X15 is a network wireless extender from China's Gion Electronics TOTOLINK. A buffer overflow vulnerability exists in TOTOLINK X15 version 1.0.0-B20230714.1105, which originates from the parameter submit-url in the file /boafrm/formSysLog failing to correctly validate the length and size ...

9CVSS9AI score0.01033EPSS
Exploits1References2
BDU FSTEC
BDU FSTEC
added 2025/06/13 12:0 a.m.4 views

The vulnerability of the built-in web server boa (/boafrm/formNtp) of the TOTOLINK X15 router’s microprogramming software allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the built-in web server boa /boafrm/formNtp of the TOTOLINK X15 router’s microprogramming software is related to the copying of buffers without checking the size of input data during the processing of the submit-url parameter. Exploiting this vulnerability allows a remote...

9CVSS7.7AI score0.00793EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/09 12:0 a.m.7 views

The vulnerability of the built-in web server boa (/boafrm/formWsc) of TOTOLINK X15 router’s microprogramming software allows a intruder to execute arbitrary commands or cause a service failure.

The vulnerability of the built-in web server boa /boafrm/formWsc of TOTOLINK X15 routers is related to the issue where the operation’s output goes beyond the buffer in memory when processing the submit-url parameter. Exploiting this vulnerability allows a remote attacker to execute arbitrary...

9CVSS8.3AI score0.04066EPSS
Exploits0References7Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/09 12:0 a.m.12 views

The vulnerability of the built-in web server boa (/boafrm/formDMZ) of TOTOLINK X15 router’s microprogramming software allows a perpetrator to execute arbitrary commands or cause service failure.

The vulnerability of the built-in web server boa /boafrm/formDMZ of TOTOLINK X15 router microprogramming software is related to the issue of the operation exceeding the buffer in memory when processing the submit-url parameter. Exploiting this vulnerability allows a remote attacker to execute...

9CVSS8.3AI score0.04066EPSS
Exploits0References7Affected Software1
CNNVD
CNNVD
added 2025/06/06 12:0 a.m.4 views

TOTOLINK X15 安全漏洞

TOTOLINK X15 is a network wireless extender from China's Gion Electronics TOTOLINK. The TOTOLINK X15 suffers from a buffer overflow vulnerability that originates from the parameter submit-url in file /boafrm/formReflashClientTbl failing to properly validate the length and size of the input data,...

9CVSS8AI score0.04066EPSS
Exploits0References6
CNNVD
CNNVD
added 2025/06/06 12:0 a.m.4 views

TOTOLINK X15 安全漏洞

TOTOLINK X15 is a network wireless extender from China's Gion Electronics TOTOLINK. The TOTOLINK X15 suffers from a buffer overflow vulnerability that originates from the parameter submit-url in the file /boafrm/formWirelessTbl that fails to correctly validate the length and size of the input dat...

9CVSS8AI score0.04066EPSS
Exploits0References6
CNNVD
CNNVD
added 2025/06/06 12:0 a.m.3 views

TOTOLINK X15 安全漏洞

TOTOLINK X15 is a network wireless extender from China's Gion Electronics TOTOLINK. The TOTOLINK X15 suffers from a buffer overflow vulnerability that originates from the parameter submit-url in file /boafrm/formWsc failing to properly validate the length and size of the input data, which can be...

9CVSS8AI score0.04066EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/05/23 9:16 a.m.6 views

CVE-2024-37643

TRENDnet TEW-814DAP v1FW1.01B01 was discovered to contain a stack overflow vulnerability via the submit-url parameter at /formPasswordAuth...

8.8CVSS5.9AI score0.00683EPSS
Exploits1References1
OSV
OSV
added 2025/05/17 4:15 p.m.5 views

CVE-2025-4830

A vulnerability, which was classified as critical, has been found in TOTOLINK A702R, A3002R and A3002RU 3.0.0-B20230809.1615. Affected by this issue is some unknown functionality of the file /boafrm/formSysCmd of the component HTTP POST Request Handler. The manipulation of the argument submit-url...

8.7CVSS6.4AI score
Exploits0References5
OSV
OSV
added 2025/05/17 10:15 a.m.4 views

CVE-2025-4824

A vulnerability classified as critical has been found in TOTOLINK A702R, A3002R and A3002RU 3.0.0-B20230809.1615. This affects an unknown part of the file /boafrm/formWsc of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. It is possib...

8.7CVSS6.4AI score0.00661EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/05/17 12:0 a.m.4 views

TOTOLINK A720R、TOTOLINK A3002R和TOTOLINK A3002RU 安全漏洞

TOTOLINK A3002RU and others are products of China Gion Electronics TOTOLINK.TOTOLINK A3002RU is a wireless router product.TOTOLINK A720R is a wireless router.TOTOLINK A3002R is a wireless router.TOTOLINK A3002R is a wireless router. A security vulnerability exists in the TOTOLINK A720R, TOTOLINK...

9CVSS9AI score0.00661EPSS
Exploits0References7
CNNVD
CNNVD
added 2025/05/17 12:0 a.m.3 views

TOTOLINK A720R、TOTOLINK A3002R和TOTOLINK A3002RU 安全漏洞

TOTOLINK A3002RU and others are products of China Gion Electronics TOTOLINK.TOTOLINK A3002RU is a wireless router product.TOTOLINK A720R is a wireless router.TOTOLINK A3002R is a wireless router.TOTOLINK A3002R is a wireless router. A security vulnerability exists in the TOTOLINK A720R, TOTOLINK...

9CVSS9AI score0.00661EPSS
Exploits0References7
CNNVD
CNNVD
added 2025/04/27 12:0 a.m.3 views

TOTOLINK N150RT 安全漏洞

The TOTOLINK N150RT is a wireless router from China's Gion Electronics TOTOLINK. The TOTOLINK N150RT suffers from a buffer overflow vulnerability that originates from the parameter submit-url in file /boafrm/formVlan failing to properly validate the length and size of the input data, which can be...

9CVSS8AI score0.00852EPSS
Exploits1References6
CNVD
CNVD
added 2024/06/21 12:0 a.m.2 views

TRENDnet TEW-814DAP Stack Buffer Overflow Vulnerability

The TRENDnet TEW-814DAP is a wireless access point from TRENDnet. The TRENDnet TEW-814DAP suffers from a stack buffer overflow vulnerability that originates from the submit-url parameter at /formPasswordAuth failing to properly validate the length of the input data, which could be exploited by an...

8.8CVSS7.2AI score0.00683EPSS
Exploits1References1
CNVD
CNVD
added 2024/06/21 12:0 a.m.3 views

TRENDnet TEW-814DAP Stack Buffer Overflow Vulnerability (CNVD-2025-17862)

The TRENDnet TEW-814DAP is a wireless access point from TRENDnet. The TRENDnet TEW-814DAP suffers from a stack buffer overflow vulnerability that stems from the submit-url parameter at /formSysLog failing to properly validate the length of the input data, which could be exploited by an attacker t...

8.8CVSS7.2AI score0.00683EPSS
Exploits1References1
OSV
OSV
added 2024/06/14 4:15 p.m.3 views

CVE-2024-37643

TRENDnet TEW-814DAP v1FW1.01B01 was discovered to contain a stack overflow vulnerability via the submit-url parameter at /formPasswordAuth...

8.8CVSS5.8AI score0.00683EPSS
Exploits1References1
NVD
NVD
added 2024/06/14 4:15 p.m.18 views

CVE-2024-37643

TRENDnet TEW-814DAP v1FW1.01B01 was discovered to contain a stack overflow vulnerability via the submit-url parameter at /formPasswordAuth...

8.8CVSS0.00683EPSS
Exploits1References1
CVE
CVE
added 2024/06/14 12:0 a.m.49 views

CVE-2024-37643

TRENDnet TEW-814DAP v1 (FW1.01B01) is affected by a stack overflow in the /formPasswordAuth endpoint caused by insufficient validation of the submit-url parameter. This vulnerability could lead to a denial-of-service condition. Public details in connected documents confirm the issue and affected ...

8.8CVSS7.9AI score0.00683EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/06/14 12:0 a.m.5 views

PT-2024-27698 · Trendnet · Trendnet Tew-814Dap

Name of the Vulnerable Software and Affected Versions: TRENDnet TEW-814DAP version v1 FW1.01B01 Description: A stack overflow issue was discovered via the submit-url parameter at the "/formSysLog" API endpoint. Recommendations: For TRENDnet TEW-814DAP version v1 FW1.01B01, as a temporary...

8.8CVSS7.4AI score0.00683EPSS
Exploits1References3
CVE
CVE
added 2024/06/14 12:0 a.m.49 views

CVE-2024-37641

TRENDnet TEW-814DAP v1 (FW1.01B01) is affected by a stack overflow in the submit-url parameter at /formNewSchedule. The issue is confirmed across multiple sources; the root cause is an input handling/stack overflow in that endpoint. Impact is rated high (CVSS v3.1: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:...

8.8CVSS7.9AI score0.00646EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder