7 matches found
CVE-2022-31937
Netgear N300 wireless router wnr2000v4-V1.0.0.70 was discovered to contain a stack overflow via strcpy in uhttpd...
CVE-2019-19945
uhttpd in OpenWrt through 18.06.5 and 19.x through 19.07.0-rc2 has an integer signedness error. This leads to out-of-bounds access to a heap buffer and a subsequent crash. It can be triggered with an HTTP POST request to a CGI script, specifying both "Transfer-Encoding: chunked" and a large...
The vulnerability of the uHTTPd web server, a microprogramming-based software for TP-Link ER7206 Omada VPN routers, allows attackers to execute arbitrary commands.
The vulnerability of the uHTTPd web server of the TP-Link ER7206 Omada VPN router exists due to the failure to take measures to neutralize specific elements. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...
The vulnerability of the uHTTPd web server, a microprogramming-based software for TP-Link ER7206 Omada VPN routers, allows attackers to execute arbitrary commands.
The vulnerability of the uHTTPd web server of the TP-Link ER7206 Omada wireless router exists due to the failure to take measures to neutralize specific elements. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands through ports 80/443 remotely...
CVE-2023-23902
A buffer overflow vulnerability exists in the uhttpd login functionality of Milesight UR32L v32.3.0.5. A specially crafted network request can lead to remote code execution. An attacker can send a network request to trigger this vulnerability...
PT-2023-4165 · Milesight · Milesight Ur32L
Name of the Vulnerable Software and Affected Versions: Milesight UR32L version 32.3.0.5 Description: A buffer overflow vulnerability exists in the uhttpd login functionality, allowing remote code execution through a specially crafted network request. An attacker can exploit this issue by sending ...
CVE-2022-31937
Netgear N300 wireless router wnr2000v4-V1.0.0.70 was discovered to contain a stack overflow via strcpy in uhttpd...