47 matches found
CVE-2026-7607 TRENDnet TEW-821DAP Firmware Udpate auto_update_firmware buffer overflow
A security vulnerability has been detected in TRENDnet TEW-821DAP 1.12B01. Impacted is the function autoupdatefirmware of the component Firmware Udpate. The manipulation of the argument str leads to buffer overflow. The attack may be initiated remotely. The vendor explains: "That firmware version...
CVE-2026-7607
CVE-2026-7607 affects TRENDnet TEW-821DAP firmware version 1.12B01, specifically the auto_update_firmware function. The vulnerability is a buffer overflow caused by manipulation of the str argument, with potential remote initiation. The vendor notes this firmware version only works on hardware ve...
CVE-2026-7607 TRENDnet TEW-821DAP Firmware Udpate auto_update_firmware buffer overflow
A security vulnerability has been detected in TRENDnet TEW-821DAP 1.12B01. Impacted is the function autoupdatefirmware of the component Firmware Udpate. The manipulation of the argument str leads to buffer overflow. The attack may be initiated remotely. The vendor explains: "That firmware version...
CVE-2026-7607
A security vulnerability has been detected in TRENDnet TEW-821DAP 1.12B01. Impacted is the function autoupdatefirmware of the component Firmware Udpate. The manipulation of the argument str leads to buffer overflow. The attack may be initiated remotely. The vendor explains: "That firmware version...
TRENDnet TEW-821DAP 缓冲区错误漏洞
The TRENDnet TEW-821DAP is a wireless access point produced by the TRENDnet company. The version TRENDnet TEW-821DAP 1.12B01 contains a buffer error vulnerability. This vulnerability stems from improper handling of the parameter str in the autoupdatefirmware function within the Firmware Update...
CVE-2026-26074
EVerest is an EV charging software stack. Versions prior to 2026.02.0 have a data race leading to possible std::map corruption. The trigger is CSMS GetLog/UpdateFirmware request network with an EVSE fault event physical. This results in TSAN reports concurrent access data race to eventqueue...
CVE-2026-26074 EVerest: OCPP201 startup event_queue lock mismatch leads to std::map/std::queue data race
EVerest is an EV charging software stack. Versions prior to 2026.02.0 have a data race leading to possible std::map corruption. The trigger is CSMS GetLog/UpdateFirmware request network with an EVSE fault event physical. This results in TSAN reports concurrent access data race to eventqueue...
PT-2026-7476
Name of the Vulnerable Software and Affected Versions JUNG Smart Panel KNX firmware versions prior to L1.12.22 Description The JUNG Smart Panel KNX firmware does not properly validate file path input in its embedded web interface. This allows remote, unauthenticated attackers to access arbitrary...
PT-2026-1870
Name of the Vulnerable Software and Affected Versions GL-iNet GL-AXT1800 router firmware version 4.6.8 Description A command injection issue exists in the plugins.install package RPC method. The method does not properly sanitize user input in package names, allowing authenticated attackers to...
PT-2025-43641
Name of the Vulnerable Software and Affected Versions D-Link DIR600L Ax version FW116WWb01 Description The D-Link DIR600L Ax device, version FW116WWb01, contains a buffer overflow. This occurs through the curTime parameter within the formSetEasy Wizard function. Recommendations Update to a newer...
Qualcomm Chipsets 安全漏洞
Qualcomm Chipsets are a series of chipsets from Qualcomm, an American company. A security vulnerability exists in Qualcomm Chipsets that stems from a potential information leak when calibration data is called from user space to update firmware size...
PT-2025-34473 · D Link · Dcs-825L
Name of the Vulnerable Software and Affected Versions: D-Link DCS-825L firmware versions prior to 1.08.01 Description: The D-Link DCS-825L firmware contains an insecure implementation in the mydlink-watch-dog.sh script. This script monitors and restarts the dcp and signalc binaries without...
PT-2025-34214 · Tenda · Tenda Ac15
Name of the Vulnerable Software and Affected Versions: Tenda AC15 version 15.03.05.19 multi TD01 Description: The Tenda AC15 router firmware contains a stack overflow issue. This occurs through the list parameter within the fromSetIpMacBind function. Recommendations: Update to a newer version of...
PT-2025-33438 · Tenda · Tenda Ch22
Name of the Vulnerable Software and Affected Versions: Tenda CH22 version 1.0.0.1 Description: A buffer overflow vulnerability exists in the formeditFileName function within the /goform/editFileName file. The issue can be exploited remotely. The exploit for this vulnerability has been publicly...
[SECURITY] Fedora 41 Update: linux-firmware-20250708-1.fc41
This package includes firmware files required for some devices to operate...
Firebox T15 contains an issue with hidden functionality
Overview Firebox T15 provided by WatchGuard Technologies contains the following vulnerability. Hidden functionality CWE-912 - CVE-2025-4106 Chuya Hayakawa and Ryo Kamino of 00One, Inc. reported this vulnerability to JPCERT/CC. JPCERT/CC coordinated with the developer. Impact An attacker may log...
CVE-2024-6364
A vulnerability in Absolute Persistence® versions before 2.8 exists when it is not activated. This may allow a skilled attacker with both physical access to the device, and full hostile network control, to initiate OS commands on the device. To remediate this vulnerability, update the device...
PT-2025-17667 · Sonicwall · Sonicos
Name of the Vulnerable Software and Affected Versions: SonicOS versions 7.1.1-7040 Description: A Null Pointer Dereference vulnerability in the SonicOS SSLVPN Virtual office interface allows a remote, unauthenticated attacker to crash the firewall, potentially leading to a Denial-of-Service DoS...
PT-2024-17176 · Unknown · Cph2 Echarge Firmware
Name of the Vulnerable Software and Affected Versions: cph2 echarge firmware versions through 2.0.4 Description: The issue affects devices that communicate with the eCharge cloud infrastructure over an insecure channel, as peer verification is disabled. This allows remote unauthenticated users,...
AMD HIP SDK Incorrect Default Permissions Vulnerability - Lenovo Support US
No description provided...