CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2024-28553
https://notcve.org/view.php?id=CVE-2024-28553
Tenda AC18 V15.03.05.05 has a stack overflow vulnerability in the entrys parameter fromAddressNat function. Tenda AC18 V15.03.05.05 tiene una vulnerabilidad de desbordamiento de pila en el parámetro de entradas de la función AddressNat. • https://github.com/abcdefg-png/IoT-vulnerable/blob/main/Tenda/AC18/fromAddressNat_entrys.md • CWE-787: Out-of-bounds Write •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 1CVE-2024-24543
https://notcve.org/view.php?id=CVE-2024-24543
Buffer Overflow vulnerability in the function setSchedWifi in Tenda AC9 v.3.0, firmware version v.15.03.06.42_multi allows a remote attacker to cause a denial of service or run arbitrary code via crafted overflow data. Vulnerabilidad de desbordamiento de búfer en la función setSchedWifi en Tenda AC9 v.3.0, versión de firmware v.15.03.06.42_multi permite a un atacante remoto provocar una denegación de servicio o ejecutar código arbitrario a través de datos de desbordamiento manipulados. • https://github.com/TimeSeg/IOT_CVE/blob/main/tenda/AC9V3/0130/setSchedWifi.md • CWE-787: Out-of-bounds Write •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 1CVE-2024-0996 – Tenda i9 httpd setcfm formSetCfm stack-based overflow
https://notcve.org/view.php?id=CVE-2024-0996
A vulnerability classified as critical has been found in Tenda i9 1.0.0.9(4122). This affects the function formSetCfm of the file /goform/setcfm of the component httpd. The manipulation of the argument funcpara1 leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. • https://jylsec.notion.site/Tenda-i9-has-stack-buffer-overflow-vulnerability-in-formSetCfm-c1bd9745c81e4207aceeaa1ba5e10563?pvs=4 https://vuldb.com/?ctiid.252261 https://vuldb.com/?id.252261 • CWE-121: Stack-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 1CVE-2024-0995 – Tenda W6 httpd wifiSSIDset formwrlSSIDset stack-based overflow
https://notcve.org/view.php?id=CVE-2024-0995
A vulnerability was found in Tenda W6 1.0.0.9(4122). It has been rated as critical. Affected by this issue is the function formwrlSSIDset of the file /goform/wifiSSIDset of the component httpd. The manipulation of the argument index leads to stack-based buffer overflow. The attack may be launched remotely. • https://jylsec.notion.site/Tenda-w6-has-stack-buffer-overflow-vulnerability-in-formwrlSSIDset-e283b41905934e97b4c65632a0018eba?pvs=4 https://vuldb.com/?ctiid.252260 https://vuldb.com/?id.252260 • CWE-121: Stack-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 1CVE-2024-0994 – Tenda W6 httpd setcfm formSetCfm stack-based overflow
https://notcve.org/view.php?id=CVE-2024-0994
A vulnerability was found in Tenda W6 1.0.0.9(4122). It has been declared as critical. Affected by this vulnerability is the function formSetCfm of the file /goform/setcfm of the component httpd. The manipulation of the argument funcpara1 leads to stack-based buffer overflow. The attack can be launched remotely. • https://jylsec.notion.site/Tenda-W6-has-stack-buffer-overflow-vulnerability-in-formSetCfm-4fab28f92ca74f519245b606d8345821?pvs=4 https://vuldb.com/?ctiid.252259 https://vuldb.com/?id.252259 • CWE-121: Stack-based Buffer Overflow CWE-787: Out-of-bounds Write •