NotCVE - vendor:"Tenda" product:"Ac6 Firmware"

Page 5 of 49 results (0.004 seconds)

CVSS: 5.4EPSS: 0%CPEs: 2EXPL: 1

CVE-2022-40010 – Tenda AC6 AC1200 15.03.06.50_multi Cross Site Scripting

https://notcve.org/view.php?id=CVE-2022-40010

Tenda AC6 AC1200 Smart Dual-Band WiFi Router 15.03.06.50_multi was discovered to contain a cross-site scripting (XSS) vulnerability via the deviceId parameter in the Parental Control module. Tenda AC6 AC1200 version 15.03.06.50_multi suffers from a persistent cross site scripting vulnerability. • http://packetstormsecurity.com/files/173029/Tenda-AC6-AC1200-15.03.06.50_multi-Cross-Site-Scripting.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 1

CVE-2023-2923 – Tenda AC6 fromDhcpListClient stack-based overflow

https://notcve.org/view.php?id=CVE-2023-2923

A vulnerability classified as critical was found in Tenda AC6 US_AC6V1.0BR_V15.03.05.19. Affected by this vulnerability is the function fromDhcpListClient. The manipulation leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. • https://github.com/GleamingEyes/vul/blob/main/1.md https://vuldb.com/?ctiid.230077 https://vuldb.com/?id.230077 • CWE-121: Stack-based Buffer Overflow CWE-787: Out-of-bounds Write •

CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 1

CVE-2023-26976

https://notcve.org/view.php?id=CVE-2023-26976

Tenda AC6 v15.03.05.09_multi was discovered to contain a stack overflow via the ssid parameter in the form_fast_setting_wifi_set function. • https://github.com/Funcy33/Vluninfo_Repo/tree/main/CNVDs/AC6/205_1 • CWE-787: Out-of-bounds Write •

CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 1

CVE-2022-45641

https://notcve.org/view.php?id=CVE-2022-45641

Tenda AC6V1.0 V15.03.05.19 is vulnerable to Buffer Overflow via formSetMacFilterCfg. Tenda AC6V1.0 V15.03.05.19 es vulnerable al desbordamiento de búfer a través de formSetMacFilterCfg. • https://github.com/Double-q1015/CVE-vulns/blob/main/tenda_ac6/formSetMacFilterCfg/formSetMacFilterCfg.md • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •

CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 1

CVE-2022-45673

https://notcve.org/view.php?id=CVE-2022-45673

Tenda AC6V1.0 V15.03.05.19 is vulnerable to Cross Site Request Forgery (CSRF) via function fromSysToolRestoreSet. Tenda AC6V1.0 V15.03.05.19 es vulnerable a Cross-Site Request Forgery (CSRF) a través de la función de SysToolRestoreSet. • https://github.com/ConfusedChenSir/VulnerabilityProjectRecords/blob/main/fromSysToolRestoreSet/fromSysToolRestoreSet.md • CWE-352: Cross-Site Request Forgery (CSRF) •

1...3 4 5 6 7