CVSS: 8.3EPSS: 0%CPEs: 2EXPL: 1CVE-2024-0534 – Tenda A15 Web-based Management Interface SetOnlineDevName stack-based overflow
https://notcve.org/view.php?id=CVE-2024-0534
A vulnerability classified as critical has been found in Tenda A15 15.13.07.13. Affected is an unknown function of the file /goform/SetOnlineDevName of the component Web-based Management Interface. The manipulation of the argument mac leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. • https://github.com/yaoyue123/iot/blob/main/Tenda/A15/SetOnlineDevName.mac.md https://vuldb.com/?ctiid.250704 https://vuldb.com/?id.250704 • CWE-121: Stack-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 8.3EPSS: 0%CPEs: 2EXPL: 1CVE-2024-0533 – Tenda A15 Web-based Management Interface SetOnlineDevName stack-based overflow
https://notcve.org/view.php?id=CVE-2024-0533
A vulnerability was found in Tenda A15 15.13.07.13. It has been rated as critical. This issue affects some unknown processing of the file /goform/SetOnlineDevName of the component Web-based Management Interface. The manipulation of the argument devName leads to stack-based buffer overflow. The attack may be initiated remotely. • https://github.com/yaoyue123/iot/blob/main/Tenda/A15/SetOnlineDevName.devname.md https://vuldb.com/?ctiid.250703 https://vuldb.com/?id.250703 • CWE-121: Stack-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 8.3EPSS: 0%CPEs: 2EXPL: 1CVE-2024-0532 – Tenda A15 Web-based Management Interface WifiExtraSet stack-based overflow
https://notcve.org/view.php?id=CVE-2024-0532
A vulnerability was found in Tenda A15 15.13.07.13. It has been declared as critical. This vulnerability affects unknown code of the file /goform/WifiExtraSet of the component Web-based Management Interface. The manipulation of the argument wpapsk_crypto2_4g leads to stack-based buffer overflow. The attack can be initiated remotely. • https://github.com/yaoyue123/iot/blob/main/Tenda/A15/WifExtraSet.md https://vuldb.com/?ctiid.250702 https://vuldb.com/?id.250702 • CWE-121: Stack-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 8.3EPSS: 0%CPEs: 2EXPL: 1CVE-2024-0531 – Tenda A15 Web-based Management Interface setBlackRule stack-based overflow
https://notcve.org/view.php?id=CVE-2024-0531
A vulnerability was found in Tenda A15 15.13.07.13. It has been classified as critical. This affects an unknown part of the file /goform/setBlackRule of the component Web-based Management Interface. The manipulation of the argument deviceList leads to stack-based buffer overflow. It is possible to initiate the attack remotely. • https://github.com/yaoyue123/iot/blob/main/Tenda/A15/setBlackRule.md https://vuldb.com/?ctiid.250701 https://vuldb.com/?id.250701 • CWE-121: Stack-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 1CVE-2022-47125
https://notcve.org/view.php?id=CVE-2022-47125
Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the wrlEn_5g parameter at /goform/WifiBasicSet. Se descubrió que Tenda A15 V15.13.07.13 contenía un stack overflow a través del parámetro wrlEn_5g en /goform/WifiBasicSet. • https://brief-nymphea-813.notion.site/Vul14-A15-bof-WifiBasicSet-wrlEn_5g-4cb7b8ecc79a4063b707a9cc8a4ff579 • CWE-787: Out-of-bounds Write •