22 matches found
CVE-2025-50404
Intelbras RX1500 Router v2.2.17 and before is vulnerable to Integer Overflow. The websReadEvent function incorrectly uses the int type when processing the "command" field of the http header, causing the array to cross the boundary and overwrite other fields in the array...
The vulnerability of the websReadEvent() function in Intelbras RX 1500 router microprogramming software allows a intruder to execute arbitrary code or cause a service failure.
The vulnerability of the websReadEvent function in Intelbras RX 1500 router microprogramming software is related to integer overflow during the processing of the http header field. Exploiting this vulnerability allows a remote attacker to execute arbitrary code or cause a service failure by sendi...
CVE-2025-50404
Intelbras RX1500 Router v2.2.17 and before is vulnerable to Integer Overflow. The websReadEvent function incorrectly uses the int type when processing the "command" field of the http header, causing the array to cross the boundary and overwrite other fields in the array...
CVE-2025-50404
Intelbras RX1500 Router v2.2.17 and before is vulnerable to Integer Overflow. The websReadEvent function incorrectly uses the int type when processing the "command" field of the http header, causing the array to cross the boundary and overwrite other fields in the array...
CVE-2025-50404
Intelbras RX1500 Router v2.2.17 and before is vulnerable to Integer Overflow. The websReadEvent function incorrectly uses the int type when processing the "command" field of the http header, causing the array to cross the boundary and overwrite other fields in the array...
PT-2025-27546 · Intelbras · Intelbras Rx1500 Router
Name of the Vulnerable Software and Affected Versions: Intelbras RX1500 Router versions 2.2.17 and earlier Description: An integer overflow exists in the websReadEvent function when processing the command field of the HTTP header. This can allow a remote attacker to execute arbitrary code or caus...
The vulnerability of the websReadEvent() function in the script /rame/ptdc.cgi of the D-Link DCS-5020L microprogrammed camera software allows a intruder to execute arbitrary code.
The vulnerability of the websReadEvent function in the /rame/ptdc.cgi script of the D-Link DCS-5020L microprogrammed IP camera is related to the reading of data beyond the buffer boundaries in memory during the processing of the Authorization: Digest Basic request. Exploiting this vulnerability...
CVE-2025-5215
A vulnerability classified as critical has been found in D-Link DCS-5020L 1.01B2. This affects the function websReadEvent of the file /rame/ptdc.cgi. The manipulation of the argument Authorization leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit ha...
The vulnerability of the websReadEvent function in the microprogrammed routing software Tenda AC allows a hacker to execute arbitrary code.
The vulnerability of the websReadEvent function in the microprogrammed routing software Tenda AC is related to the assignment of the NULL pointer. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...
The vulnerability of the websReadEvent() function in the microprogramming software for Tenda FH451, Tenda FH1201, Tenda FH1202, and Tenda FH1206 allows a hacker to trigger a service failure.
The vulnerability of the websReadEvent function in the microprogramming software for Tenda FH451, Tenda FH1201, Tenda FH1202, and Tenda FH1206 is related to pointer assignment errors. Exploiting this vulnerability could allow a malicious actor to cause service failure by sending specially crafted...
CVE-2024-12002 Tenda FH451/FH1201/FH1202/FH1206 GetIPTV websReadEvent null pointer dereference
A vulnerability classified as problematic was found in Tenda FH451, FH1201, FH1202 and FH1206 up to 20241129. Affected by this vulnerability is the function websReadEvent of the file /goform/GetIPTV. The manipulation of the argument Content-Length leads to null pointer dereference. The attack can...
CVE-2024-12002
The CVE-2024-12002 entry affects Tenda FH451, FH1201, FH1202 and FH1206. The vulnerability lies in websReadEvent() in the /goform/GetIPTV endpoint, where manipulation of Content-Length causes a null pointer dereference. Exploitation can be‑ remote and is publicly disclosed. Reported impact is den...
Tenda多款产品 安全漏洞
Tenda FH1202 and others are products of Tenda China.Tenda FH1202 is a wireless router.Tenda FH1206 is a wireless router.Tenda FH1201 is a wireless router. A security vulnerability exists in the Tenda FH451, FH1201, FH1202, and FH1206 that originates from a null pointer dereference vulnerability i...
The vulnerability of the websReadEvent function in the microprogramming software for Tenda i22 allows a hacker to trigger a service failure.
The vulnerability of the websReadEvent function in the Tenda i22 router microprogramming system is related to the assignment of a null pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...
CVE-2024-11650
A vulnerability was found in Tenda i9 1.0.0.83828 and classified as critical. This issue affects the function websReadEvent of the file /goform/GetIPTV. The manipulation leads to null pointer dereference. The attack may be initiated remotely. The exploit has been disclosed to the public and may b...
CVE-2024-11650 Tenda i9 GetIPTV websReadEvent null pointer dereference
A vulnerability was found in Tenda i9 1.0.0.83828 and classified as critical. This issue affects the function websReadEvent of the file /goform/GetIPTV. The manipulation leads to null pointer dereference. The attack may be initiated remotely. The exploit has been disclosed to the public and may b...
CVE-2024-11650
CVE-2024-11650 affects Tenda i9 firmware 1.0.0.8(3828). The vulnerability is in the function websReadEvent of /goform/GetIPTV and results in a null pointer dereference, with remote exploitation reportedly possible. Several connected sources corroborate the issue and classify it as critical/High i...
Tenda i9 安全漏洞
The Tenda i9 is a ceiling-mountable wireless access point from China's Tenda. A denial of service vulnerability exists in the Tenda i9 that stems from a null pointer dereference in the websReadEvent function of file /goform/GetIPTV. An attacker could exploit the vulnerability to cause a denial of...
PT-2024-17159 · Tenda · Tenda I9
Name of the Vulnerable Software and Affected Versions: Tenda i9 version 1.0.0.83828 Description: A critical issue affects the function websReadEvent of the file /goform/GetIPTV, leading to null pointer dereference. The attack may be initiated remotely. Recommendations: For Tenda i9 version...
CVE-2024-10750 Tenda i22 SysToo websReadEvent null pointer dereference
A vulnerability has been found in Tenda i22 1.0.0.34687 and classified as problematic. Affected by this vulnerability is the function websReadEvent of the file /goform/GetIPTV?fgHPOST/goform/SysToo. The manipulation of the argument Content-Length leads to null pointer dereference. The attack can ...