Lucene search
K

26 matches found

RedhatCVE
RedhatCVE
added 2026/05/26 8:14 p.m.12 views

CVE-2026-9344

A security vulnerability has been detected in Edimax EW-7438RPn up to 1.31. The impacted element is an unknown function of the file /goform/formWpsStart of the component webs. Such manipulation of the argument pinCode/wlan-url leads to stack-based buffer overflow. The attack can be executed...

9CVSS7.8AI score0.00445EPSS
Exploits0References1
CVE
CVE
added 2026/05/24 11:45 a.m.21 views

CVE-2026-9379

CVE-2026-9379 affects Edimax BR-6675nD (v1.12) with a vulnerability in the POST request handler, specifically the /goform/formWpsStart function. An attacker can manipulate the pinCode argument to achieve a remote command injection, with network-based access and low privileges required (exploit ma...

6.5CVSS6.4AI score0.01158EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/05/24 12:0 a.m.14 views

CVE-2026-9344 Edimax EW-7438RPn webs formWpsStart stack-based overflow

A security vulnerability has been detected in Edimax EW-7438RPn up to 1.31. The impacted element is an unknown function of the file /goform/formWpsStart of the component webs. Such manipulation of the argument pinCode/wlan-url leads to stack-based buffer overflow. The attack can be executed...

9CVSS0.00445EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/04/27 11:45 p.m.32 views

CVE-2026-7202 Totolink A8000RU CGI cstecgi.cgi setWiFiWpsStart os command injection

A vulnerability has been found in Totolink A8000RU 7.1cu.643b20200521. This affects the function setWiFiWpsStart of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. The manipulation of the argument wscDisabled leads to os command injection. The attack can be initiated remotely. The...

10CVSS0.02448EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/03/03 1:48 a.m.7 views

CVE-2025-70252

An issue was discovered in /goform/WifiWpsStart in Tenda AC6V2.0 V15.03.06.23multi. The index and mode are controllable. If the conditions are met to sprintf, they will be spliced into tmp. It is worth noting that there is no size check,which leads to a stack overflow vulnerability...

7.5CVSS6AI score0.00447EPSS
Exploits1References1
NVD
NVD
added 2026/03/02 5:16 p.m.5 views

CVE-2025-70252

An issue was discovered in /goform/WifiWpsStart in Tenda AC6V2.0 V15.03.06.23multi. The index and mode are controllable. If the conditions are met to sprintf, they will be spliced into tmp. It is worth noting that there is no size check,which leads to a stack overflow vulnerability...

7.5CVSS0.00447EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2026/03/02 12:0 a.m.6 views

PT-2026-22622

Name of the Vulnerable Software and Affected Versions Tenda AC6V2.0 version 15.03.06.23 multi Description An issue exists in the /goform/WifiWpsStart component of the software. The index and mode parameters are controllable. When specific conditions are met during the sprintf function call, these...

7.5CVSS6.1AI score0.00447EPSS
Exploits1References8
CVE
CVE
added 2026/03/02 12:0 a.m.8 views

CVE-2025-70252

CVE-2025-70252 affects Tenda AC6V2.0 (V15.03.06.23_multi). The vulnerability is in /goform/WifiWpsStart where the parameters index and mode are controllable. When certain conditions meet during an sprintf, data are spliced into a temporary buffer without size checking, leading to a stack overflow...

7.5CVSS6AI score0.00447EPSS
Exploits1References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/03/02 12:0 a.m.4 views

CVE-2025-70252

An issue was discovered in /goform/WifiWpsStart in Tenda AC6V2.0 V15.03.06.23multi. The index and mode are controllable. If the conditions are met to sprintf, they will be spliced into tmp. It is worth noting that there is no size check,which leads to a stack overflow vulnerability...

7.5CVSS6AI score0.00447EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/03/02 12:0 a.m.22 views

CVE-2025-70252

An issue was discovered in /goform/WifiWpsStart in Tenda AC6V2.0 V15.03.06.23multi. The index and mode are controllable. If the conditions are met to sprintf, they will be spliced into tmp. It is worth noting that there is no size check,which leads to a stack overflow vulnerability...

0.00447EPSS
Exploits1References2
EUVD
EUVD
added 2026/03/02 12:0 a.m.5 views

EUVD-2025-208181

An issue was discovered in /goform/WifiWpsStart in Tenda AC6V2.0 V15.03.06.23multi. The index and mode are controllable. If the conditions are met to sprintf, they will be spliced into tmp. It is worth noting that there is no size check,which leads to a stack overflow vulnerability...

6AI score0.00447EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/10/06 8:10 p.m.8 views

CVE-2025-11302

A security vulnerability has been detected in Belkin F9K1015 1.00.10. This impacts an unknown function of the file /goform/formWpsStart. Such manipulation of the argument pinCode leads to buffer overflow. The attack can be launched remotely. The exploit has been disclosed publicly and may be used...

9CVSS6.8AI score0.00996EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/10/05 12:0 a.m.9 views

Belkin F9K1015 安全漏洞

Belkin F9K1015 is a WiFi signal extender from Belkin Canada. A security vulnerability exists in the Belkin F9K1015 version 1.00.10, which stems from incorrect manipulation of the parameter pinCode in the file /goform/formWpsStart, which could result in a buffer overflow...

9CVSS9AI score0.00996EPSS
Exploits1References5
CNVD
CNVD
added 2025/07/11 12:0 a.m.3 views

Belkin F9K1122 Stack Buffer Overflow Vulnerability (CNVD-2025-20838)

The Belkin F9K1122 is a WiFi signal extender from Belkin Canada. The Belkin F9K1122 suffers from a stack buffer overflow vulnerability that originates from the incorrect operation of the parameter pinCode in the file /goform/formWpsStart, no details of the vulnerability are provided at this time...

9CVSS7.4AI score0.01249EPSS
Exploits1References1
OSV
OSV
added 2025/04/23 4:15 p.m.3 views

CVE-2025-45429

In the Tenda ac9 v1.0 router with firmware V15.03.05.14multi, there is a stack overflow vulnerability in /goform/WifiWpsStart, which may lead to remote arbitrary code execution...

9.8CVSS6.2AI score0.00864EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/04/23 12:0 a.m.4 views

Tenda AC9 安全漏洞

Tenda AC9 is a wireless router from Tenda, a Chinese company. The Tenda AC9 suffers from a buffer overflow vulnerability that originates from /goform/WifiWpsStart failing to properly validate the length and size of input data, which can be exploited by an attacker to execute arbitrary code on the...

9.8CVSS8.2AI score0.00864EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2024/04/02 12:0 a.m.5 views

The vulnerability of the formWifiWpsStart function (/goform/WifiWpsStart) in the Tenda AC7 router software allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the formWifiWpsStart function /goform/WifiWpsStart in the Tenda AC7 router software is related to buffer overflow in the stack. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of protected information through...

9CVSS8.1AI score0.01856EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2024/03/26 6:15 p.m.3 views

CVE-2024-2896

A vulnerability was found in Tenda AC7 15.03.06.44. It has been rated as critical. This issue affects the function formWifiWpsStart of the file /goform/WifiWpsStart. The manipulation of the argument index leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has...

8.8CVSS6.5AI score0.01856EPSS
Exploits1References4
CNNVD
CNNVD
added 2024/03/22 12:0 a.m.4 views

Tenda AC15 安全漏洞

Tenda AC15 is a dual-band wireless router launched by Shenzhen Jixiang Tenda Technology Co. in October 2015, which supports 802.11ac protocol with a theoretical transmission rate of 1900Mbps 600Mbps in 2.4GHz band and 1300Mbps in 5GHz band. Tenda AC15 suffers from a stack buffer overflow...

9.8CVSS8.3AI score0.01541EPSS
Exploits1References4
OSV
OSV
added 2024/03/20 5:15 p.m.4 views

CVE-2024-2706

A vulnerability, which was classified as critical, was found in Tenda AC10U 15.03.06.49. This affects the function formWifiWpsStart of the file /goform/WifiWpsStart. The manipulation of the argument index leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The...

8.8CVSS6.2AI score0.01734EPSS
Exploits1References3
Rows per page
Query Builder