Lucene search
K

13 matches found

Prion
Prion
added 2023/03/13 2:15 p.m.23 views

Buffer overflow

Tenda V15V1.0 V15.11.0.14152131901058 was discovered to contain a buffer overflow vulnerability via the wifiFilterListRemark parameter in the modifyWifiFilterRules function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

7.5CVSS9.4AI score0.0102EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2023/03/13 2:15 p.m.13 views

Buffer overflow

Tenda V15V1.0 V15.11.0.14152131901058 was discovered to contain a buffer overflow vulnerability via the index parameter in the formDelDnsForward function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

5CVSS7.6AI score0.00896EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2023/03/13 12:0 a.m.86 views

CVE-2023-27063

CVE-2023-27063 affects Tenda V15V1.0 with V15.11.0.14 (1521_3190_1058). A buffer overflow in the DNSDomainName parameter of the formModifyDnsForward function allows DoS via a crafted request. The entry indicates network access, no privileges required, and high confidentiality/integrity/availabili...

9.8CVSS9.4AI score0.0102EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/02/19 12:0 a.m.6 views

PT-2023-20923 · Tenda · Tenda V15V1.0

Name of the Vulnerable Software and Affected Versions: Tenda V15V1.0 version V15.11.0.141521 3190 1058 Description: A buffer overflow issue was discovered via the wifiFilterListRemark parameter in the modifyWifiFilterRules function, allowing attackers to cause a Denial of Service DoS via a crafte...

10CVSS7.4AI score0.0102EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2023/02/19 12:0 a.m.4 views

PT-2023-20926 · Tenda · Tenda V15

Name of the Vulnerable Software and Affected Versions: Tenda V15 versions V15.11.0.141521 3190 1058 Description: A buffer overflow issue was found, allowing attackers to cause a Denial of Service DoS via a crafted request. The issue is related to the index parameter in the formDelDnsForward...

7.8CVSS7.3AI score0.00896EPSS
Exploits1References5
NVD
NVD
added 2022/12/13 7:15 p.m.26 views

CVE-2022-45005

IP-COM EW9 V15.11.0.149732 was discovered to contain a command injection vulnerability in the cmdgetpingoutput function...

9.8CVSS0.05352EPSS
Exploits1References1
Prion
Prion
added 2022/12/13 7:15 p.m.18 views

Command injection

IP-COM EW9 V15.11.0.149732 was discovered to contain a command injection vulnerability in the cmdgetpingoutput function...

7.5CVSS9.7AI score0.05352EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2022/12/13 12:0 a.m.47 views

CVE-2022-45005

CVE-2022-45005 affects IP-COM EW9 firmware v15.11.0.14(9732). The issue is a command injection in the cmd_get_ping_output function, enabling an attacker to inject commands via the affected feature. Reported impact is high (confidentiality, integrity, and availability all high) with network-expose...

9.8CVSS9.7AI score0.05352EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2022/10/27 6:15 p.m.27 views

CVE-2022-43367

IP-COM EW9 V15.11.0.149732 was discovered to contain a command injection vulnerability in the formSetDebugCfg function...

9.8CVSS0.05182EPSS
Exploits1References1
Prion
Prion
added 2022/10/27 6:15 p.m.18 views

Command injection

IP-COM EW9 V15.11.0.149732 was discovered to contain a command injection vulnerability in the formSetDebugCfg function...

7.5CVSS9.7AI score0.05182EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/10/27 12:0 a.m.21 views

CVE-2022-43365

IP-COM EW9 V15.11.0.149732 was discovered to contain a buffer overflow in the formSetDebugCfg function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted string...

7.8AI score0.00815EPSS
Exploits1References1
CVE
CVE
added 2022/10/27 12:0 a.m.51 views

CVE-2022-43366

CVE-2022-43366 affects IP-COM EW9, version 15.11.0.14(9732). The flaw allows unauthenticated attackers to access sensitive information via the checkLoginUser, ate, telnet, version, setDebugCfg, and boot interfaces. NVD/CVE metrics assign CVSS v3.1: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N (base score ...

7.5CVSS7.4AI score0.00805EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2022/10/27 12:0 a.m.47 views

CVE-2022-43365

The CVE-2022-43365 vulnerability affects IP-COM EW9 router (firmware version V15.11.0.14(9732)). A buffer overflow in the formSetDebugCfg function is described, enabling a crafted string to trigger a Denial of Service (DoS). Connected sources consistently cite the same root cause and impact witho...

7.5CVSS7.6AI score0.00815EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder