Lucene search
+L

1089 matches found

CVE
CVE
added 2026/04/02 3:45 p.m.20 views

CVE-2026-5351

The CVE-2026-5351 instance affects Trendnet TEW-657BRM 1.00.1, with a vulnerability in the add_wps_client function in /setup.cgi. The parameter wl_enrolee_pin can be manipulated, causing OS command injection. The attack may be initiated remotely, with publicly available exploit evidence. The vend...

8.8CVSS6.4AI score0.04457EPSS
Exploits1References4Affected Software1
Positive Technologies
Positive Technologies
added 2026/04/02 12:0 a.m.9 views

PT-2026-29799

A weakness has been identified in Trendnet TEW-657BRM 1.00.1. This affects the function add wps client of the file /setup.cgi. This manipulation of the argument wl enrolee pin causes os command injection. The attack may be initiated remotely. The exploit has been made available to the public and...

6.5CVSS6.4AI score0.04457EPSS
Exploits1References5
CNNVD
CNNVD
added 2026/04/02 12:0 a.m.8 views

TRENDnet TEW-657BRM 操作系统命令注入漏洞

The TRENDnet TEW-657BRM is a WiFi router from TRENDnet. An OS command injection vulnerability exists in the TRENDnet TEW-657BRM addwpsclient function, which originates from a misuse of the addwpsclient function parameter wlenroleepin in the file /setup.cgi, and can be exploited by an attacker to...

8.8CVSS6.6AI score0.04457EPSS
Exploits1References4
GithubExploit
GithubExploit
added 2026/03/27 8:39 p.m.200 views

JesterSploit

JesterSploit – Advanced WiFi Penetration Testing Framework !...

6AI score
Exploits0
Vulnrichment
Vulnrichment
added 2026/03/26 11:11 p.m.3 views

CVE-2026-4905 Tenda AC5 POST Request WifiWpsOOB formWifiWpsOOB stack-based overflow

A vulnerability was found in Tenda AC5 15.03.06.47. Impacted is the function formWifiWpsOOB of the file /goform/WifiWpsOOB of the component POST Request Handler. Performing a manipulation of the argument index results in stack-based buffer overflow. Remote exploitation of the attack is possible...

9CVSS7.6AI score0.00632EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2026/03/26 11:11 p.m.3 views

CVE-2026-4905

A vulnerability was found in Tenda AC5 15.03.06.47. Impacted is the function formWifiWpsOOB of the file /goform/WifiWpsOOB of the component POST Request Handler. Performing a manipulation of the argument index results in stack-based buffer overflow. Remote exploitation of the attack is possible...

9CVSS7.8AI score0.00632EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2026/03/26 11:11 p.m.29 views

CVE-2026-4905 Tenda AC5 POST Request WifiWpsOOB formWifiWpsOOB stack-based overflow

A vulnerability was found in Tenda AC5 15.03.06.47. Impacted is the function formWifiWpsOOB of the file /goform/WifiWpsOOB of the component POST Request Handler. Performing a manipulation of the argument index results in stack-based buffer overflow. Remote exploitation of the attack is possible...

9CVSS0.00632EPSS
Exploits1References5
GithubExploit
GithubExploit
added 2026/03/23 6:32 p.m.265 views

Exploit for CVE-2024-2473

CVE-2024-2473 — WPS Hide Login Page Identifier A profession...

5.3CVSS5.8AI score0.01235EPSS
Exploits1
Vulnrichment
Vulnrichment
added 2026/03/20 7:2 a.m.6 views

CVE-2026-4477 Yi Technology YI Home Camera WPA/WPS hard-coded key

A vulnerability was determined in Yi Technology YI Home Camera 2 2.1.120171024151200. This affects an unknown function of the component WPA/WPS. Executing a manipulation can lead to use of hard-coded cryptographic key . The attack can only be done within the local network. This attack is...

3.1CVSS5.2AI score0.00219EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/03/08 12:32 a.m.6 views

CVE-2026-3696

A vulnerability was found in Totolink N300RH 6..1c.1353B20190305. The affected element is the function setWiFiWpsConfig of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Performing a manipulation results in os command injection. The attack can be initiated remotely. The exploit has...

7.5CVSS6.8AI score0.01922EPSS
Exploits1References5
CNNVD
CNNVD
added 2026/03/08 12:0 a.m.6 views

TOTOLINK N300RH 操作系统命令注入漏洞

TOTOLINK N300RH is a long-range wireless router produced by TOTOLINK Corporation. The version 6..1c.1353B20190305 of TOTOLINK N300RH has a vulnerability related to operating system command injection. This vulnerability stems from incorrect operations on the function setWiFiWpsConfig in the...

9.8CVSS7.1AI score0.01922EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2026/03/03 1:48 a.m.9 views

CVE-2025-70252

An issue was discovered in /goform/WifiWpsStart in Tenda AC6V2.0 V15.03.06.23multi. The index and mode are controllable. If the conditions are met to sprintf, they will be spliced into tmp. It is worth noting that there is no size check,which leads to a stack overflow vulnerability...

7.5CVSS6AI score0.00447EPSS
Exploits1References1
NVD
NVD
added 2026/03/02 5:16 p.m.7 views

CVE-2025-70252

An issue was discovered in /goform/WifiWpsStart in Tenda AC6V2.0 V15.03.06.23multi. The index and mode are controllable. If the conditions are met to sprintf, they will be spliced into tmp. It is worth noting that there is no size check,which leads to a stack overflow vulnerability...

7.5CVSS0.00447EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2026/03/02 12:0 a.m.7 views

PT-2026-22622

Name of the Vulnerable Software and Affected Versions Tenda AC6V2.0 version 15.03.06.23 multi Description An issue exists in the /goform/WifiWpsStart component of the software. The index and mode parameters are controllable. When specific conditions are met during the sprintf function call, these...

7.5CVSS6.1AI score0.00447EPSS
Exploits1References8
Cvelist
Cvelist
added 2026/03/02 12:0 a.m.26 views

CVE-2025-70252

An issue was discovered in /goform/WifiWpsStart in Tenda AC6V2.0 V15.03.06.23multi. The index and mode are controllable. If the conditions are met to sprintf, they will be spliced into tmp. It is worth noting that there is no size check,which leads to a stack overflow vulnerability...

0.00447EPSS
Exploits1References2
CVE
CVE
added 2026/03/02 12:0 a.m.10 views

CVE-2025-70252

CVE-2025-70252 affects Tenda AC6V2.0 (V15.03.06.23_multi). The vulnerability is in /goform/WifiWpsStart where the parameters index and mode are controllable. When certain conditions meet during an sprintf, data are spliced into a temporary buffer without size checking, leading to a stack overflow...

7.5CVSS6AI score0.00447EPSS
Exploits1References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/03/02 12:0 a.m.15 views

CVE-2025-70252

An issue was discovered in /goform/WifiWpsStart in Tenda AC6V2.0 V15.03.06.23multi. The index and mode are controllable. If the conditions are met to sprintf, they will be spliced into tmp. It is worth noting that there is no size check,which leads to a stack overflow vulnerability...

7.5CVSS6AI score0.00447EPSS
Exploits1References3
EUVD
EUVD
added 2026/03/02 12:0 a.m.6 views

EUVD-2025-208181

An issue was discovered in /goform/WifiWpsStart in Tenda AC6V2.0 V15.03.06.23multi. The index and mode are controllable. If the conditions are met to sprintf, they will be spliced into tmp. It is worth noting that there is no size check,which leads to a stack overflow vulnerability...

6AI score0.00447EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2026/02/05 7:23 p.m.5 views

CVE-2026-25532

ESF-IDF is the Espressif Internet of Things IOT Development Framework. In versions 5.5.2, 5.4.3, 5.3.4, 5.2.6, and 5.1.6, a vulnerability exists in the WPS Wi-Fi Protected Setup Enrollee implementation where malformed EAP-WSC packets with truncated payloads can cause integer underflow during...

8CVSS5.5AI score0.00213EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/02/04 5:58 p.m.13 views

CVE-2026-25532

ESF-IDF is the Espressif Internet of Things IOT Development Framework. In versions 5.5.2, 5.4.3, 5.3.4, 5.2.6, and 5.1.6, a vulnerability exists in the WPS Wi-Fi Protected Setup Enrollee implementation where malformed EAP-WSC packets with truncated payloads can cause integer underflow during...

6.3CVSS5.5AI score0.00213EPSS
Exploits0References9
Rows per page
Query Builder