Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

32 matches found

RedhatCVE
RedhatCVEadded 2026/01/22 12:20 a.m.4 views

CVE-2025-69763

Tenda AX3 firmware v16.03.12.11 contains a stack overflow in formSetIptv via the vlanId parameter, which can cause memory corruption and enable remote code execution...

9.8CVSS6AI score0.00182EPSS
Exploits1References1
OSV
OSVadded 2026/01/21 6:16 p.m.1 views

CVE-2025-69763

Tenda AX3 firmware v16.03.12.11 contains a stack overflow in formSetIptv via the vlanId parameter, which can cause memory corruption and enable remote code execution...

9.8CVSS6.3AI score
Exploits0References2
EUVD
EUVDadded 2026/01/21 12:0 a.m.3 views

EUVD-2026-3607

Tenda AX3 firmware v16.03.12.11 contains a stack overflow in formSetIptv via the vlanId parameter, which can cause memory corruption and enable remote code execution...

9.8CVSS6.2AI score0.00182EPSS
Exploits1References3
CVE
CVEadded 2026/01/21 12:0 a.m.4 views

CVE-2025-69763

CVE-2025-69763 affects Tenda AX3 firmware v16.03.12.11, with a stack overflow in formSetIptv exploitable via the vlanId parameter. The vulnerability can cause memory corruption and enable remote code execution. The issue is widely reported across multiple feeds (NVD, Red Hat CVE page, CIRCL sight...

9.8CVSS6.2AI score0.00182EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologiesadded 2026/01/21 12:0 a.m.2 views

PT-2026-3840

Tenda AX3 firmware v16.03.12.11 contains a stack overflow in formSetIptv via the vlanId parameter, which can cause memory corruption and enable remote code execution...

6.2AI score0.00182EPSS
Exploits1References3
Cvelist
Cvelistadded 2026/01/21 12:0 a.m.13 views

CVE-2025-69763

Tenda AX3 firmware v16.03.12.11 contains a stack overflow in formSetIptv via the vlanId parameter, which can cause memory corruption and enable remote code execution...

0.00182EPSS
Exploits1References2
Vulnrichment
Vulnrichmentadded 2026/01/21 12:0 a.m.2 views

CVE-2025-69763

Tenda AX3 firmware v16.03.12.11 contains a stack overflow in formSetIptv via the vlanId parameter, which can cause memory corruption and enable remote code execution...

6.2AI score0.00182EPSS
Exploits1References2
RedhatCVE
RedhatCVEadded 2025/05/23 12:6 a.m.4 views

CVE-2022-25441

Tenda AC9 v15.03.2.21 was discovered to contain a remote command execution RCE vulnerability via the vlanid parameter in the SetIPTVCfg function...

10CVSS7.7AI score0.12707EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/22 7:44 a.m.5 views

CVE-2018-20503

Allied Telesis 8100L/8 devices allow XSS via the edit-ipv4interface.php vlanid or subnetmask parameter...

6.1CVSS5.9AI score0.02063EPSS
Exploits5References1
OSV
OSVadded 2024/10/17 6:15 p.m.1 views

CVE-2024-48637

D-Link DIR882FW130B06 and DIR878 DIR878FW130B08 were discovered to contain a command injection vulnerability via the VLANID:1/VID parameter in the SetVLANSettings function. This vulnerability allows attackers to execute arbitrary OS commands via a crafted POST request...

8CVSS6AI score
Exploits0References2
NVD
NVDadded 2024/10/17 6:15 p.m.10 views

CVE-2024-48635

D-Link DIR882FW130B06 and DIR878 DIR878FW130B08 were discovered to contain a command injection vulnerability via the VLANID:2/VID parameter in the SetVLANSettings function. This vulnerability allows attackers to execute arbitrary OS commands via a crafted POST request...

8CVSS0.00822EPSS
Exploits0References2
NVD
NVDadded 2024/10/17 6:15 p.m.14 views

CVE-2024-48637

D-Link DIR882FW130B06 and DIR878 DIR878FW130B08 were discovered to contain a command injection vulnerability via the VLANID:1/VID parameter in the SetVLANSettings function. This vulnerability allows attackers to execute arbitrary OS commands via a crafted POST request...

8CVSS0.00822EPSS
Exploits0References2
Cvelist
Cvelistadded 2024/10/17 12:0 a.m.12 views

CVE-2024-48635

D-Link DIR882FW130B06 and DIR878 DIR878FW130B08 were discovered to contain a command injection vulnerability via the VLANID:2/VID parameter in the SetVLANSettings function. This vulnerability allows attackers to execute arbitrary OS commands via a crafted POST request...

0.00822EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2024/10/17 12:0 a.m.10 views

CVE-2024-48636

D-Link DIR882FW130B06 and DIR878 DIR878FW130B08 were discovered to contain a command injection vulnerability via the VLANID:0/VID parameter in the SetVLANSettings function. This vulnerability allows attackers to execute arbitrary OS commands via a crafted POST request...

8.7AI score0.00822EPSS
Exploits0References2
Cvelist
Cvelistadded 2024/10/17 12:0 a.m.12 views

CVE-2024-48637

D-Link DIR882FW130B06 and DIR878 DIR878FW130B08 were discovered to contain a command injection vulnerability via the VLANID:1/VID parameter in the SetVLANSettings function. This vulnerability allows attackers to execute arbitrary OS commands via a crafted POST request...

0.00822EPSS
Exploits0References2
CVE
CVEadded 2024/10/17 12:0 a.m.41 views

CVE-2024-48636

D-Link DIR-882 (FW130B06) and DIR-878 (FW130B08) are affected by CVE-2024-48636, a command-injection in SetVLANSettings that allows arbitrary OS commands via a crafted POST to VLANID:0/VID. Root cause cited across sources is insufficient neutralization of special elements used in OS commands. Exp...

8CVSS8.7AI score0.00822EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichmentadded 2024/10/17 12:0 a.m.12 views

CVE-2024-48635

D-Link DIR882FW130B06 and DIR878 DIR878FW130B08 were discovered to contain a command injection vulnerability via the VLANID:2/VID parameter in the SetVLANSettings function. This vulnerability allows attackers to execute arbitrary OS commands via a crafted POST request...

8.7AI score0.00822EPSS
Exploits0References2
Cvelist
Cvelistadded 2024/10/17 12:0 a.m.12 views

CVE-2024-48636

D-Link DIR882FW130B06 and DIR878 DIR878FW130B08 were discovered to contain a command injection vulnerability via the VLANID:0/VID parameter in the SetVLANSettings function. This vulnerability allows attackers to execute arbitrary OS commands via a crafted POST request...

0.00822EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2024/10/17 12:0 a.m.18 views

CVE-2024-48637

D-Link DIR882FW130B06 and DIR878 DIR878FW130B08 were discovered to contain a command injection vulnerability via the VLANID:1/VID parameter in the SetVLANSettings function. This vulnerability allows attackers to execute arbitrary OS commands via a crafted POST request...

8.7AI score0.00822EPSS
Exploits0References2
CVE
CVEadded 2024/10/17 12:0 a.m.41 views

CVE-2024-48637

CVE-2024-48637 affects D-Link DIR-878 and DIR-882 (firmware DIR-878 FW130B08; DIR-882 FW130B06). Root cause: lack of neutralization of special elements in SetVLANSettings (prog.cgi) allowing command injection via VLANID:1/VID parameter in a crafted POST request. Impact: remote attacker can execut...

8CVSS8.7AI score0.00822EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder