Total
2901 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2024-29012 | 1 Sonicwall | 22 Nsa 2700, Nsa 3700, Nsa 4700 and 19 more | 2025-03-25 | N/A | 7.5 HIGH |
|
Stack-based buffer overflow vulnerability in the SonicOS HTTP server allows an authenticated remote attacker to cause Denial of Service (DoS) via sscanf function.
|
|||||
| CVE-2023-24332 | 1 Tenda | 2 Ac6, Ac6 Firmware | 2025-03-25 | N/A | 8.1 HIGH |
|
A stack overflow vulnerability in Tenda AC6 with firmware version US_AC6V5.0re_V03.03.02.01_cn_TDC01 allows attackers to run arbitrary commands via crafted POST request to /goform/PowerSaveSet.
|
|||||
| CVE-2023-24334 | 1 Tenda | 2 Ac23, Ac23 Firmware | 2025-03-25 | N/A | 8.0 HIGH |
|
A stack overflow vulnerability in Tenda AC23 with firmware version US_AC23V1.0re_V16.03.07.45_cn_TDC01 allows attackers to run arbitrary commands via schedStartTime parameter.
|
|||||
| CVE-2022-42444 | 3 Ibm, Linux, Microsoft | 4 Aix, App Connect Enterprise, Linux Kernel and 1 more | 2025-03-25 | N/A | 4.9 MEDIUM |
|
IBM App Connect Enterprise 11.0.0.8 through 11.0.0.19 and 12.0.1.0 through 12.0.5.0 is vulnerable to a buffer overflow. A remote privileged user could overflow a buffer and cause the application to crash. IBM X-Force ID: 238538.
|
|||||
| CVE-2023-24348 | 1 Dlink | 2 Dir-605l, Dir-605l Firmware | 2025-03-24 | N/A | 9.8 CRITICAL |
|
D-Link N300 WI-FI Router DIR-605L v2.13B01 was discovered to contain a stack overflow via the curTime parameter at /goform/formSetACLFilter.
|
|||||
| CVE-2023-24347 | 1 Dlink | 2 Dir-605l, Dir-605l Firmware | 2025-03-24 | N/A | 8.8 HIGH |
|
D-Link N300 WI-FI Router DIR-605L v2.13B01 was discovered to contain a stack overflow via the webpage parameter at /goform/formSetWanDhcpplus.
|
|||||
| CVE-2023-24346 | 1 Dlink | 2 Dir-605l, Dir-605l Firmware | 2025-03-24 | N/A | 8.8 HIGH |
|
D-Link N300 WI-FI Router DIR-605L v2.13B01 was discovered to contain a stack overflow via the wan_connected parameter at /goform/formEasySetupWizard3.
|
|||||
| CVE-2023-24345 | 1 Dlink | 2 Dir-605l, Dir-605l Firmware | 2025-03-24 | N/A | 8.8 HIGH |
|
D-Link N300 WI-FI Router DIR-605L v2.13B01 was discovered to contain a stack overflow via the curTime parameter at /goform/formSetWanDhcpplus.
|
|||||
| CVE-2023-24344 | 1 Dlink | 2 Dir-605l, Dir-605l Firmware | 2025-03-24 | N/A | 8.8 HIGH |
|
D-Link N300 WI-FI Router DIR-605L v2.13B01 was discovered to contain a stack overflow via the webpage parameter at /goform/formWlanGuestSetup.
|
|||||
| CVE-2023-24343 | 1 Dlink | 2 Dir-605l, Dir-605l Firmware | 2025-03-24 | N/A | 8.8 HIGH |
|
D-Link N300 WI-FI Router DIR-605L v2.13B01 was discovered to contain a stack overflow via the curTime parameter at /goform/formSchedule.
|
|||||
| CVE-2024-13903 | 1 Quickjs-ng | 1 Quickjs | 2025-03-24 | 5.0 MEDIUM | 4.3 MEDIUM |
|
A vulnerability was found in quickjs-ng QuickJS up to 0.8.0. It has been declared as problematic. Affected by this vulnerability is the function JS_GetRuntime of the file quickjs.c of the component qjs. The manipulation leads to stack-based buffer overflow. The attack can be launched remotely. Upgrading to version 0.9.0 is able to address this issue. The patch is named 99c02eb45170775a9a679c32b45dd4000ea67aff. It is recommended to upgrade the affected component.
|
|||||
| CVE-2025-0349 | 1 Tenda | 2 Ac6, Ac6 Firmware | 2025-03-22 | 9.0 HIGH | 8.8 HIGH |
|
A vulnerability classified as critical has been found in Tenda AC6 15.03.05.16. Affected is the function GetParentControlInfo of the file /goform/GetParentControlInfo. The manipulation of the argument src/mac leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well.
|
|||||
| CVE-2025-29387 | 1 Tenda | 2 Ac9, Ac9 Firmware | 2025-03-17 | N/A | 7.1 HIGH |
|
In Tenda AC9 v1.0 V15.03.05.14_multi, the wanSpeed parameter of /goform/AdvSetMacMtuWan has a stack overflow vulnerability, which can lead to remote arbitrary code execution.
|
|||||
| CVE-2024-53311 | 2025-03-17 | N/A | 5.5 MEDIUM | ||
|
A Stack buffer overflow in the arguments parameter in Immunity Inc. Immunity Debugger v1.85 allows attackers to execute arbitrary code via a crafted input that exceeds the buffer size.
|
|||||
| CVE-2024-53309 | 2025-03-17 | N/A | 5.5 MEDIUM | ||
|
A stack-based buffer overflow vulnerability exists in Effectmatrix Total Video Converter Command Line (TVCC) 2.50 when an overly long string is passed to the "-f" parameter. This can lead to memory corruption, potentially allowing arbitrary code execution or causing a denial of service via specially crafted input.
|
|||||
| CVE-2024-32293 | 1 Tenda | 2 W30e, W30e Firmware | 2025-03-17 | N/A | 8.0 HIGH |
|
Tenda W30E v1.0 V1.0.1.25(633) firmware has a stack overflow vulnerability via the page parameter in the fromDhcpListClient function.
|
|||||
| CVE-2024-32291 | 1 Tenda | 2 W30e, W30e Firmware | 2025-03-17 | N/A | 7.5 HIGH |
|
Tenda W30E v1.0 firmware v1.0.1.25(633) has a stack overflow vulnerability via the page parameter in the fromNatlimit function.
|
|||||
| CVE-2024-32290 | 1 Tenda | 2 W30e, W30e Firmware | 2025-03-17 | N/A | 6.7 MEDIUM |
|
Tenda W30E v1.0 v1.0.1.25(633) firmware has a stack overflow vulnerability via the page parameter in the fromAddressNat function.
|
|||||
| CVE-2024-32288 | 1 Tenda | 2 W30e, W30e Firmware | 2025-03-17 | N/A | 6.3 MEDIUM |
|
Tenda W30E v1.0 V1.0.1.25(633) firmware has a stack overflow vulnerability located via the page parameter in the fromwebExcptypemanFilter function.
|
|||||
| CVE-2024-32287 | 1 Tenda | 2 W30e, W30e Firmware | 2025-03-17 | N/A | 6.5 MEDIUM |
|
Tenda W30E v1.0 V1.0.1.25(633) firmware has a stack overflow vulnerability via the qos parameter in the fromqossetting function.
|
|||||
| CVE-2024-32285 | 1 Tenda | 2 W30e, W30e Firmware | 2025-03-17 | N/A | 8.0 HIGH |
|
Tenda W30E v1.0 V1.0.1.25(633) firmware has a stack overflow vulnerability via the password parameter in the formaddUserName function.
|
|||||
| CVE-2024-32313 | 1 Tenda | 2 Fh1205, Fh1205 Firmware | 2025-03-17 | N/A | 6.5 MEDIUM |
|
Tenda FH1205 V2.0.0.7(775) firmware has a stack overflow vulnerability located via the adslPwd parameter of the formWanParameterSetting function.
|
|||||
| CVE-2024-32307 | 1 Tenda | 2 Fh1205, Fh1205 Firmware | 2025-03-17 | N/A | 7.4 HIGH |
|
Tenda FH1205 V2.0.0.7(775) firmware has a stack overflow vulnerability located via the PPW parameter in the fromWizardHandle function.
|
|||||
| CVE-2024-32310 | 1 Tenda | 2 F1203, F1203 Firmware | 2025-03-17 | N/A | 8.0 HIGH |
|
Tenda F1203 V2.0.1.6 firmware has a stack overflow vulnerability located in the PPW parameter of the fromWizardHandle function.
|
|||||
| CVE-2024-32312 | 1 Tenda | 2 F1203, F1203 Firmware | 2025-03-17 | N/A | 5.7 MEDIUM |
|
Tenda F1203 V2.0.1.6 firmware has a stack overflow vulnerability located in the adslPwd parameter of the formWanParameterSetting function.
|
|||||
| CVE-2024-32311 | 1 Tenda | 2 Fh1203, Fh1203 Firmware | 2025-03-17 | N/A | 6.5 MEDIUM |
|
Tenda FH1203 v2.0.1.6 firmware has a stack overflow vulnerability via the adslPwd parameter in the formWanParameterSetting function.
|
|||||
| CVE-2024-32299 | 1 Tenda | 2 Fh1203, Fh1203 Firmware | 2025-03-17 | N/A | 8.8 HIGH |
|
Tenda FH1203 v2.0.1.6 firmware has a stack overflow vulnerability via the PPW parameter in the fromWizardHandle function.
|
|||||
| CVE-2024-32316 | 1 Tenda | 2 Ac500, Ac500 Firmware | 2025-03-17 | N/A | 6.5 MEDIUM |
|
Tenda AC500 V2.0.1.9(1307) firmware has a stack overflow vulnerability in the fromDhcpListClient function.
|
|||||
| CVE-2024-32318 | 1 Tenda | 2 Ac500, Ac500 Firmware | 2025-03-17 | N/A | 9.8 CRITICAL |
|
Tenda AC500 V2.0.1.9(1307) firmware has a stack overflow vulnerability via the vlan parameter in the formSetVlanInfo function.
|
|||||
| CVE-2024-32320 | 1 Tenda | 2 Ac500, Ac500 Firmware | 2025-03-17 | N/A | 5.9 MEDIUM |
|
Tenda AC500 V2.0.1.9(1307) firmware has a stack overflow vulnerability via the timeZone parameter in the formSetTimeZone function.
|
|||||
| CVE-2024-33215 | 1 Tenda | 2 Fh1206, Fh1206 Firmware | 2025-03-17 | N/A | 9.8 CRITICAL |
|
Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vulnerability via the mitInterface parameter in ip/goform/addressNat.
|
|||||
| CVE-2024-33212 | 1 Tenda | 2 Fh1206, Fh1206 Firmware | 2025-03-17 | N/A | 8.8 HIGH |
|
Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vulnerability via the funcpara1 parameter in ip/goform/setcfm.
|
|||||
| CVE-2024-33211 | 1 Tenda | 2 Fh1206, Fh1206 Firmware | 2025-03-17 | N/A | 7.3 HIGH |
|
Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vulnerability via the PPPOEPassword parameter in ip/goform/QuickIndex.
|
|||||
| CVE-2024-33213 | 1 Tenda | 2 Fh1206, Fh1206 Firmware | 2025-03-17 | N/A | 6.5 MEDIUM |
|
Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vulnerability via the mitInterface parameter in ip/goform/RouteStatic.
|
|||||
| CVE-2024-33217 | 1 Tenda | 2 Fh1206, Fh1206 Firmware | 2025-03-17 | N/A | 7.5 HIGH |
|
Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vulnerability via the page parameter in ip/goform/addressNat.
|
|||||
| CVE-2024-35580 | 1 Tenda | 2 Ax1806, Ax1806 Firmware | 2025-03-17 | N/A | 9.8 CRITICAL |
|
Tenda AX1806 v1.0.0.1 contains a stack overflow via the adv.iptv.stbpvid parameter in the function formSetIptv.
|
|||||
| CVE-2024-35579 | 1 Tenda | 2 Ax1806, Ax1806 Firmware | 2025-03-17 | N/A | 7.7 HIGH |
|
Tenda AX1806 v1.0.0.1 contains a stack overflow via the iptv.city.vlan parameter in the function formSetIptv.
|
|||||
| CVE-2024-35578 | 1 Tenda | 2 Ax1806, Ax1806 Firmware | 2025-03-17 | N/A | 8.0 HIGH |
|
Tenda AX1806 v1.0.0.1 contains a stack overflow via the adv.iptv.stballvlans parameter in the function formSetIptv.
|
|||||
| CVE-2024-35576 | 1 Tenda | 2 Ax1806, Ax1806 Firmware | 2025-03-17 | N/A | 5.2 MEDIUM |
|
Tenda AX1806 v1.0.0.1 contains a stack overflow via the iptv.stb.port parameter in the function formSetIptv.
|
|||||
| CVE-2024-32317 | 1 Tenda | 2 Ac10, Ac10 Firmware | 2025-03-17 | N/A | 7.5 HIGH |
|
Tenda AC10 v4.0 V16.03.10.13 and V16.03.10.20 firmware has a stack overflow vulnerability via the adslPwd parameter in the formWanParameterSetting function.
|
|||||