Lucene search
K

64 matches found

BDU FSTEC
BDU FSTEC
added 2025/02/05 12:0 a.m.6 views

The vulnerability of the SetCmdlineRun function (/goform/SetCmdlineRun) in the Tenda A18 router microprogramming system allows a attacker to cause a service failure.

The vulnerability of the SetCmdlineRun function /goform/SetCmdlineRun in the Tenda A18 router microprogramming system is related to buffer overflow in the stack. Exploiting this vulnerability could allow a malicious actor to trigger a service failure by sending a specially crafted POST request wi...

6.8CVSS7AI score0.01116EPSS
Exploits1References6Affected Software1
OSV
OSV
added 2025/01/30 2:15 a.m.5 views

CVE-2025-0848

A vulnerability was found in Tenda A18 up to 15.13.07.09. It has been rated as critical. This issue affects the function SetCmdlineRun of the file /goform/SetCmdlineRun of the component HTTP POST Request Handler. The manipulation of the argument wpapskcrypto5g leads to stack-based buffer overflow...

9.8CVSS6.6AI score0.01116EPSS
Exploits1References5
CNNVD
CNNVD
added 2024/11/10 12:0 a.m.4 views

Tenda AC10 安全漏洞

The Tenda AC10 is a wireless router from the Chinese company Tenda. A buffer overflow vulnerability exists in Tenda AC10 version 16.03.10.13, which originates from the parameter wpapskcrypto in the file /goform/WifiExtraSet that fails to correctly validate the length of the input data, and can be...

9CVSS8.2AI score0.01043EPSS
Exploits1References5
OSV
OSV
added 2024/06/20 2:15 p.m.6 views

CVE-2024-6189

A vulnerability was found in Tenda A301 15.13.08.12. It has been classified as critical. Affected is the function fromSetWirelessRepeat of the file /goform/WifiExtraSet. The manipulation of the argument wpapskcrypto leads to stack-based buffer overflow. It is possible to launch the attack remotel...

8.8CVSS6.3AI score0.01358EPSS
Exploits1References4
OSV
OSV
added 2024/03/26 7:15 p.m.5 views

CVE-2024-2899

A vulnerability, which was classified as critical, has been found in Tenda AC7 15.03.06.44. Affected by this issue is the function fromSetWirelessRepeat of the file /goform/WifiExtraSet. The manipulation of the argument wpapskcrypto leads to stack-based buffer overflow. The attack may be launched...

8.8CVSS6.3AI score0.01683EPSS
Exploits1References4
OSV
OSV
added 2024/01/26 4:15 p.m.6 views

CVE-2024-0930

A vulnerability classified as critical has been found in Tenda AC10U 15.03.06.49multiTDE01. This affects the function fromSetWirelessRepeat. The manipulation of the argument wpapskcrypto leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been...

9.8CVSS6.3AI score0.1521EPSS
Exploits1References3
OSV
OSV
added 2023/11/27 4:15 p.m.5 views

CVE-2023-49043

Buffer Overflow vulnerability in Tenda AX1803 v.1.0.0.1 allows a remote attacker to execute arbitrary code via the wpapskcrypto parameter in the function fromSetWirelessRepeat...

9.8CVSS6.2AI score0.13224EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2023/11/27 4:15 p.m.5 views

CVE-2023-49043

Buffer Overflow vulnerability in Tenda AX1803 v.1.0.0.1 allows a remote attacker to execute arbitrary code via the wpapskcrypto parameter in the function fromSetWirelessRepeat...

9.8CVSS6.2AI score0.13224EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2023/11/03 12:0 a.m.3 views

PT-2023-9691 · Tenda · Tenda Ax1806

Name of the Vulnerable Software and Affected Versions: Tenda AX1806 version 1.0.0.1 Description: The issue is related to a stack overflow vulnerability in the sub 455D4 function of the Tenda AX1806 router's firmware, which occurs when processing the wpapsk crypto parameter. This vulnerability can...

9.1CVSS7.6AI score0.00801EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2023/08/30 1:15 p.m.4 views

CVE-2023-41554

Tenda AC9 V3.0 V15.03.06.42multi was discovered to contain a stack overflow via parameter wpapskcrypto at url /goform/WifiExtraSet...

9.8CVSS7.4AI score0.00701EPSS
Exploits1References2
OSV
OSV
added 2023/08/30 1:15 p.m.4 views

CVE-2023-41554

Tenda AC9 V3.0 V15.03.06.42multi was discovered to contain a stack overflow via parameter wpapskcrypto at url /goform/WifiExtraSet...

9.8CVSS5.9AI score0.00701EPSS
Exploits1References1
CNNVD
CNNVD
added 2023/08/30 12:0 a.m.4 views

Tenda AC9 缓冲区错误漏洞

Tenda AC9 is a wireless router from Tenda, China. A security vulnerability exists in the Tenda AC9, which is caused by a buffer overflow in the wpapskcrypto parameter of /goform/WifiExtraSet...

9.8CVSS8.8AI score0.00701EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2023/07/10 5:15 p.m.8 views

CVE-2023-37710

Tenda AC1206 V15.03.06.23 and AC10 V15.03.06.47 were discovered to contain a stack overflow in the wpapskcrypto parameter in the fromSetWirelessRepeat function...

9.8CVSS7.4AI score0.00937EPSS
Exploits1References2
CNNVD
CNNVD
added 2023/07/10 12:0 a.m.3 views

Tenda AC1206 缓冲区错误漏洞

Tenda AC1206 is a Wireless King Gigabit Router from Tenda, China. A security vulnerability exists in the Tenda AC1206 version V15.03.06.23, which is caused by a buffer overflow in the wpapskcrypto parameter of the fromSetWirelessRepeat method...

9.8CVSS8.8AI score0.00937EPSS
Exploits1References2
OSV
OSV
added 2022/12/02 6:15 p.m.4 views

CVE-2022-45659

Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the wpapskcrypto parameter in the fromSetWirelessRepeat function...

7.5CVSS6.2AI score0.00815EPSS
Exploits1References1
OSV
OSV
added 2022/11/03 2:15 p.m.3 views

CVE-2022-43104

Tenda AC23 V16.03.07.45cn was discovered to contain a stack overflow via the wpapskcrypto parameter in the fromSetWirelessRepeat function...

9.8CVSS5.9AI score0.00928EPSS
Exploits1References1
CNNVD
CNNVD
added 2022/11/03 12:0 a.m.3 views

Tenda AC23 缓冲区错误漏洞

Tenda AC23 is a dual-band Gigabit wireless router from Tenda China. The Tenda AC23 suffers from a stack overflow vulnerability that originates from a stack overflow in the wpapskcrypto parameter in the fromSetWirelessRepeat function. An attacker could exploit this vulnerability to run arbitrary...

9.8CVSS7.7AI score0.00928EPSS
Exploits1References2
OSV
OSV
added 2022/10/25 5:15 p.m.3 views

CVE-2022-35885

Four format string injection vulnerabilities exist in the web interface /action/wirelessConnect functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9Z and 6.9X. A specially-crafted HTTP request can lead to memory corruption, information disclosure and denial of service. An attacke...

8.8CVSS5.8AI score
Exploits0References1
OSV
OSV
added 2022/10/25 5:15 p.m.2 views

CVE-2022-35875

Four format string injection vulnerabilities exist in the XCMD testWifiAP functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9X and 6.9Z. Specially-crafted configuration values can lead to memory corruption, information disclosure and denial of service. An attacker can modify a...

9.8CVSS5.9AI score
Exploits0References1
OSV
OSV
added 2022/10/25 5:15 p.m.5 views

CVE-2022-33205

Four OS command injection vulnerabilities exists in the web interface /action/wirelessConnect functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9X and 6.9Z. A specially-crafted HTTP request can lead to arbitrary command execution. An attacker can make an authenticated HTTP reque...

9.9CVSS6AI score0.04183EPSS
Exploits1References1
Rows per page
Query Builder