CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 1CVE-2024-0535 – Tenda PA6 httpd portmap cgiPortMapAdd stack-based overflow
https://notcve.org/view.php?id=CVE-2024-0535
15 Jan 2024 — A vulnerability classified as critical was found in Tenda PA6 1.0.1.21. Affected by this vulnerability is the function cgiPortMapAdd of the file /portmap of the component httpd. The manipulation of the argument groupName leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. • https://github.com/jylsec/vuldb/blob/main/Tenda/PA6/2/README.md • CWE-121: Stack-based Buffer Overflow •
CVSS: 9.0EPSS: 5%CPEs: 2EXPL: 1CVE-2019-19505
https://notcve.org/view.php?id=CVE-2019-19505
25 Jun 2020 — Tenda PA6 Wi-Fi Powerline extender 1.0.1.21 is vulnerable to a stack-based buffer overflow, caused by improper bounds checking by the "Wireless" section in the web-UI. By sending a specially crafted hostname, a remote attacker could overflow a buffer and execute arbitrary code on the system or cause the application to crash. El extensor Tenda PA6 Wi-Fi Powerline versión 1.0.1.21, es vulnerable a un desbordamiento del búfer en la región stack de la memoria, causado por una comprobación incorrecta de límites ... • https://securityintelligence.com/posts/vulnerable-powerline-extenders-underline-lax-iot-security • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 1CVE-2019-19506
https://notcve.org/view.php?id=CVE-2019-19506
25 Jun 2020 — Tenda PA6 Wi-Fi Powerline extender 1.0.1.21 is vulnerable to a denial of service, caused by an error in the "homeplugd" process. By sending a specially crafted UDP packet, an attacker could exploit this vulnerability to cause the device to reboot. El extensor Tenda PA6 Wi-Fi Powerline versión 1.0.1.21, es vulnerable a una denegación de servicio, causada por un error en el proceso "homeplugd". Mediante el envío de un paquete UDP especialmente diseñado, un atacante podría aprovechar esta vulnerabilidad para h... • https://securityintelligence.com/posts/vulnerable-powerline-extenders-underline-lax-iot-security • CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop') •
CVSS: 9.0EPSS: 3%CPEs: 2EXPL: 1CVE-2019-16213
https://notcve.org/view.php?id=CVE-2019-16213
25 Jun 2020 — Tenda PA6 Wi-Fi Powerline extender 1.0.1.21 could allow a remote authenticated attacker to execute arbitrary commands on the system. By sending a specially crafted string, an attacker could modify the device name of an attached PLC adapter to inject and execute arbitrary commands on the system with root privileges. El extensor Tenda PA6 Wi-Fi Powerline versión 1.0.1.21, podría permitir a un atacante autenticado remoto ejecutar comandos arbitrarios en el sistema. Mediante el envío de una cadena especialmente... • https://securityintelligence.com/posts/vulnerable-powerline-extenders-underline-lax-iot-security • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •