CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Actiontec WCB6200Q uhgetpostdatawithupload Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Actiontec WCB6200Q routers. Authentication is not required to exploit this...

8.8CVSS7.8AI score

Exploits0References1

NVD•added 2024/06/19 12:15 a.m.•14 views

CVE-2024-6146

8.8CVSS0.017EPSS

Exploits0References1

NVD•added 2024/06/19 12:15 a.m.•17 views

CVE-2024-6145

Actiontec WCB6200Q Cookie Format String Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Actiontec WCB6200Q routers. Authentication is not required to exploit this vulnerability. The specific flaw exis...

8.8CVSS0.0112EPSS

Exploits0References1

OSV•added 2024/06/19 12:15 a.m.•0 views

CVE-2024-6144

Actiontec WCB6200Q Multipart Boundary Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Actiontec WCB6200Q routers. Authentication is not required to exploit this...

8.8CVSS6.3AI score

Exploits0References1

OSV•added 2024/06/19 12:15 a.m.•0 views

CVE-2024-6145

8.8CVSS7.7AI score

Exploits0References1

NVD•added 2024/06/19 12:15 a.m.•14 views

CVE-2024-6142

Actiontec WCB6200Q uhtcprecvcontent Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Actiontec WCB6200Q routers. Authentication is not required to exploit this vulnerability. The specif...

8.8CVSS0.017EPSS

Exploits0References1

OSV•added 2024/06/19 12:15 a.m.•0 views

CVE-2024-6143

Actiontec WCB6200Q uhtcprecvheader Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Actiontec WCB6200Q routers. Authentication is not required to exploit this vulnerability. The specifi...

8.8CVSS7.7AI score0.017EPSS

Exploits0References1

OSV•added 2024/06/19 12:15 a.m.•1 views

CVE-2024-6142

8.8CVSS7.7AI score

Exploits0References1

NVD•added 2024/06/19 12:15 a.m.•16 views

CVE-2024-6143

8.8CVSS0.017EPSS

Exploits0References1

Cvelist•added 2024/06/18 11:39 p.m.•21 views

CVE-2024-6146 Actiontec WCB6200Q uh_get_postdata_withupload Stack-based Buffer Overflow Remote Code Execution Vulnerability

8.8CVSS0.017EPSS

Exploits0References1

Vulnrichment•added 2024/06/18 11:39 p.m.•18 views

CVE-2024-6146 Actiontec WCB6200Q uh_get_postdata_withupload Stack-based Buffer Overflow Remote Code Execution Vulnerability

8.8CVSS7.8AI score0.017EPSS

Exploits0References1

CVE•added 2024/06/18 11:39 p.m.•50 views

CVE-2024-6146

CVE-2024-6146 concerns Actiontec WCB6200Q with a stack-based buffer overflow in the HTTP server function responsible for handling postdata with upload (uh_get_postdata_withupload). The flaw arises from insufficient validation of user-supplied data length before copying into a fixed-length stack-b...

8.8CVSS9.1AI score0.017EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2024/06/18 11:39 p.m.•11 views

CVE-2024-6145 Actiontec WCB6200Q Cookie Format String Remote Code Execution Vulnerability

8.8CVSS9AI score0.0112EPSS

Exploits0References1

CVE•added 2024/06/18 11:39 p.m.•47 views

CVE-2024-6145

The CVE-2024-6145 entry concerns Actiontec WCB6200Q routers. Concrete details in connected documents show that the vulnerability exists in the HTTP server, where a crafted Cookie header can trigger a format specifier from a user-supplied string, allowing a network-adjacent attacker to execute arb...

8.8CVSS9AI score0.0112EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by