5 results (0.003 seconds)

CVSS: 8.1EPSS: 0%CPEs: 2EXPL: 1

Missing error handling in the HTTP server component of Tenda RX9 Pro Firmware V22.03.02.20 allows authenticated attackers to arbitrarily lock the device. La falta de manejo de errores en el componente del servidor HTTP del Tenda RX9 Pro Firmware V22.03.02.20 permite a atacantes autenticados bloquear arbitrariamente el dispositivo. • https://blog.rtlcopymemory.com/tenda-rx9-pro • CWE-862: Missing Authorization •

CVSS: 7.1EPSS: 0%CPEs: 2EXPL: 1

A buffer overflow in the HTTP server component of Tenda RX9 Pro v22.03.02.20 might allow an authenticated attacker to overwrite memory. Un desbordamiento de búfer en el componente del servidor HTTP de Tenda RX9 Pro v22.03.02.20 podría permitir que un atacante autenticado sobrescriba la memoria. • https://blog.rtlcopymemory.com/tenda-rx9-pro • CWE-787: Out-of-bounds Write •

CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 1

Tenda RX9_Pro V22.03.02.10 is vulnerable to Buffer Overflow via httpd/setMacFilterCfg. Tenda RX9_Pro V22.03.02.10 es vulnerable al desbordamiento del búfer por medio de httpd/setMacFilterCfg • https://github.com/whiter6666/CVE/blob/main/Tenda_RX9_Pro/setMacFilterCfg.md • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •

CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 1

Tenda RX9_Pro V22.03.02.10 is vulnerable to Buffer Overflow via httpd/setIPv6Status. Tenda RX9_Pro V22.03.02.10 es vulnerable al desbordamiento del búfer por medio de httpd/setIPv6Status • https://github.com/whiter6666/CVE/blob/main/Tenda_RX9_Pro/setIPv6Status.md • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •

CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 1

Tenda RX9_Pro V22.03.02.10 is vulnerable to Buffer Overflow via httpd/SetNetControlList Tenda RX9_Pro V22.03.02.10 es vulnerable al desbordamiento del búfer por medio de httpd/SetNetControlList • https://github.com/whiter6666/CVE/blob/main/Tenda_RX9_Pro/SetNetControlList.md • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •