CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 1CVE-2023-0782 – Tenda AC23 httpd formGetSysToolDDNS out-of-bounds write
https://notcve.org/view.php?id=CVE-2023-0782
A vulnerability was found in Tenda AC23 16.03.07.45 and classified as critical. Affected by this issue is the function formSetSysToolDDNS/formGetSysToolDDNS of the file /bin/httpd. The manipulation leads to out-of-bounds write. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. • https://github.com/jingping911/tendaAC23overflow/blob/main/README.md https://vuldb.com/?ctiid.220640 https://vuldb.com/?id.220640 • CWE-787: Out-of-bounds Write •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 1CVE-2022-48130
https://notcve.org/view.php?id=CVE-2022-48130
Tenda W20E v15.11.0.6 was discovered to contain multiple stack overflows in the function formSetStaticRoute via the parameters staticRouteNet, staticRouteMask, staticRouteGateway, staticRouteWAN. • https://github.com/Stevenbaga/fengsha/blob/main/W20E/formSetStaticRoute.md • CWE-787: Out-of-bounds Write •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 1CVE-2023-24166
https://notcve.org/view.php?id=CVE-2023-24166
Tenda AC18 V15.03.05.19 is vulnerable to Buffer Overflow via /goform/formWifiBasicSet. Tenda AC18 V15.03.05.19 es vulnerable al desbordamiento del búfer a través de /goform/formWifiBasicSet. • https://github.com/DrizzlingSun/Tenda/blob/main/AC18/2/2.md • CWE-787: Out-of-bounds Write •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2023-24165
https://notcve.org/view.php?id=CVE-2023-24165
Tenda AC18 V15.03.05.19 is vulnerable to Buffer Overflow via /goform/initIpAddrInfo. Tenda AC18 V15.03.05.19 es vulnerable al desbordamiento del búfer a través de /goform/initIpAddrInfo. • https://github.com/DrizzlingSun/Tenda/blob/main/AC18/7/7.md • CWE-787: Out-of-bounds Write •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2023-24164
https://notcve.org/view.php?id=CVE-2023-24164
Tenda AC18 V15.03.05.19 is vulnerable to Buffer Overflow via /goform/FUN_000c2318. • https://github.com/DrizzlingSun/Tenda/blob/main/AC18/4/4.md • CWE-787: Out-of-bounds Write •