Total
992 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2024-25748 | 2024-08-28 | N/A | 8.8 HIGH | ||
A Stack Based Buffer Overflow vulnerability in tenda AC9 AC9 v.3.0 with firmware version v.15.03.06.42_multi allows a remote attacker to execute arbitrary code via the fromSetIpMacBind function. | |||||
CVE-2024-25746 | 2024-08-28 | N/A | 8.8 HIGH | ||
Stack Based Buffer Overflow vulnerability in Tenda AC9 v.3.0 with firmware version v.15.03.06.42_multi allows a remote attacker to execute arbitrary code via the add_white_node function. | |||||
CVE-2024-34087 | 2024-08-28 | N/A | 9.8 CRITICAL | ||
An SEH-based buffer overflow in the BPQ32 HTTP Server in BPQ32 6.0.24.1 allows remote attackers with access to the Web Terminal to achieve remote code execution via an HTTP POST /TermInput request. | |||||
CVE-2024-28640 | 2024-08-28 | N/A | 7.5 HIGH | ||
Buffer Overflow vulnerability in TOTOLink X5000R V9.1.0u.6118-B20201102 and A7000R V9.1.0u.6115-B20201022 allows a remote attacker to cause a denial of service (D0S) via the command field. | |||||
CVE-2024-28537 | 2024-08-28 | N/A | 9.8 CRITICAL | ||
Tenda AC18 V15.03.05.05 has a stack overflow vulnerability in the page parameter of fromNatStaticSetting function. | |||||
CVE-2024-8231 | 2024-08-28 | 9.0 HIGH | 8.8 HIGH | ||
A vulnerability classified as critical has been found in Tenda O6 1.0.0.7(2054). Affected is the function fromVirtualSet of the file /goform/setPortForward. The manipulation of the argument ip/localPort/publicPort/app leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. NOTE: The vendor was contacted early about this disclosure but did not respond in any way. | |||||
CVE-2024-30596 | 2024-08-27 | N/A | 9.8 CRITICAL | ||
Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the deviceId parameter of the formSetDeviceName function. | |||||
CVE-2024-30604 | 2024-08-27 | N/A | 7.5 HIGH | ||
Tenda FH1203 v2.0.1.6 has a stack overflow vulnerability in the list1 parameter of the fromDhcpListClient function. | |||||
CVE-2024-30587 | 2024-08-27 | N/A | 9.8 CRITICAL | ||
Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the urls parameter of the saveParentControlInfo function. | |||||
CVE-2024-30630 | 2024-08-27 | N/A | 9.8 CRITICAL | ||
Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the time parameter from saveParentControlInfo function. | |||||
CVE-2024-30626 | 2024-08-27 | N/A | 8.0 HIGH | ||
Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the schedEndTime parameter from setSchedWifi function. | |||||
CVE-2024-30606 | 2024-08-27 | N/A | 8.0 HIGH | ||
Tenda FH1203 v2.0.1.6 has a stack overflow vulnerability in the page parameter of the fromDhcpListClient function. | |||||
CVE-2024-30600 | 2024-08-27 | N/A | 8.0 HIGH | ||
Tenda FH1203 v2.0.1.6 has a stack overflow vulnerability in the schedEndTime parameter of the setSchedWifi function. | |||||
CVE-2024-25751 | 2024-08-27 | N/A | 9.8 CRITICAL | ||
A Stack Based Buffer Overflow vulnerability in Tenda AC9 v.3.0 with firmware version v.15.03.06.42_multi allows a remote attacker to execute arbitrary code via the fromSetSysTime function. | |||||
CVE-2024-31002 | 2024-08-27 | N/A | 9.8 CRITICAL | ||
Buffer Overflow vulnerability in Bento4 Bento v.1.6.0-641 allows a remote attacker to execute arbitrary code via the AP4 BitReader::ReadCache() at Ap4Utils.cpp component. | |||||
CVE-2024-44390 | 1 Tencacn | 2 Fh1206, Fh1206 Firmware | 2024-08-27 | N/A | 8.8 HIGH |
Tenda FH1206 V1.2.0.8(8155)_EN contains a Buffer Overflow vulnerability via the function formWrlsafeset. | |||||
CVE-2024-44387 | 1 Tencacn | 2 Fh1206, Fh1206 Firmware | 2024-08-27 | N/A | 6.5 MEDIUM |
Tenda FH1206 V1.2.0.8(8155)_EN contains a Buffer Overflow vulnerability via the functino formWrlExtraGet. | |||||
CVE-2024-44557 | 1 Tenda | 2 Ax1806, Ax1806 Firmware | 2024-08-27 | N/A | 9.8 CRITICAL |
Tenda AX1806 v1.0.0.1 contains a stack overflow via the iptv.stb.mode parameter in the function setIptvInfo. | |||||
CVE-2024-44553 | 1 Tenda | 2 Ax1806, Ax1806 Firmware | 2024-08-27 | N/A | 9.8 CRITICAL |
Tenda AX1806 v1.0.0.1 contains a stack overflow via the iptv.stb.mode parameter in the function formGetIptv. | |||||
CVE-2024-44550 | 1 Tenda | 2 Ax1806, Ax1806 Firmware | 2024-08-27 | N/A | 9.8 CRITICAL |
Tenda AX1806 v1.0.0.1 contains a stack overflow via the adv.iptv.stbpvid parameter in the function formGetIptv. |