Skip to main content
CVE-2022-47128 CRITICAL POC Act Now

Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the wepkey2 parameter at /goform/WifiBasicSet. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Tenda Buffer Overflow A15 Firmware
NVD
CVSS 3.1
9.8
EPSS
1.0%
CVE-2022-47127 CRITICAL POC Act Now

Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the wrlPwd parameter at /goform/WifiBasicSet. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Tenda Buffer Overflow A15 Firmware
NVD
CVSS 3.1
9.8
EPSS
0.9%
CVE-2022-47126 CRITICAL POC Act Now

Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the wrlEn parameter at /goform/WifiBasicSet. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Tenda Buffer Overflow A15 Firmware
NVD
CVSS 3.1
9.8
EPSS
0.9%
CVE-2022-47125 CRITICAL POC Act Now

Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the wrlEn_5g parameter at /goform/WifiBasicSet. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Tenda Buffer Overflow A15 Firmware
NVD
CVSS 3.1
9.8
EPSS
0.9%
CVE-2022-47124 CRITICAL POC Act Now

Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the wepkey4 parameter at /goform/WifiBasicSet. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Tenda Buffer Overflow A15 Firmware
NVD
CVSS 3.1
9.8
EPSS
0.9%
CVE-2022-47123 CRITICAL POC Act Now

Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the wepkey3 parameter at /goform/WifiBasicSet. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Tenda Buffer Overflow A15 Firmware
NVD
CVSS 3.1
9.8
EPSS
1.0%
CVE-2022-47122 CRITICAL POC Act Now

Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the wrlPwd_5g parameter at /goform/WifiBasicSet. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Tenda Buffer Overflow A15 Firmware
NVD
CVSS 3.1
9.8
EPSS
0.9%
CVE-2022-47121 CRITICAL POC Act Now

Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the wepkey parameter at /goform/WifiBasicSet. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Tenda Buffer Overflow A15 Firmware
NVD
CVSS 3.1
9.8
EPSS
0.9%
CVE-2022-47120 CRITICAL POC Act Now

Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the security_5g parameter at /goform/WifiBasicSet. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Tenda Buffer Overflow A15 Firmware
NVD
CVSS 3.1
9.8
EPSS
0.9%
CVE-2022-47119 CRITICAL POC Act Now

Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the ssid parameter at /goform/WifiBasicSet. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Tenda Buffer Overflow A15 Firmware
NVD
CVSS 3.1
9.8
EPSS
0.9%
CVE-2022-47118 CRITICAL POC Act Now

Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the wepkey1 parameter at /goform/WifiBasicSet. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Tenda Buffer Overflow A15 Firmware
NVD
CVSS 3.1
9.8
EPSS
0.9%
CVE-2022-47117 CRITICAL POC Act Now

Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the security parameter at /goform/WifiBasicSet. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Tenda Buffer Overflow A15 Firmware
NVD
CVSS 3.1
9.8
EPSS
0.9%
CVE-2022-47115 CRITICAL POC Act Now

Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the wepauth parameter at /goform/WifiBasicSet. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Tenda Buffer Overflow A15 Firmware
NVD
CVSS 3.1
9.8
EPSS
0.9%
CVE-2022-46601 CRITICAL POC Act Now

TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the setbg_num parameter in the icp_setbg_img (sub_41DD68) function. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Buffer Overflow Tew 755Ap Firmware
NVD
CVSS 3.1
9.8
EPSS
1.0%
CVE-2022-46600 CRITICAL POC Act Now

TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the wps_sta_enrollee_pin parameter in the action set_sta_enrollee_pin_24g function. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Buffer Overflow Tew 755Ap Firmware
NVD
CVSS 3.1
9.8
EPSS
0.9%
CVE-2022-46599 CRITICAL POC Act Now

TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the setlogo_num parameter in the icp_setlogo_img (sub_41DBF4) function. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Buffer Overflow Tew 755Ap Firmware
NVD
CVSS 3.1
9.8
EPSS
1.0%
CVE-2022-46598 CRITICAL POC Act Now

TRENDnet TEW755AP 1.13B01 was discovered to contain a command injection vulnerability via the wps_sta_enrollee_pin parameter in the action set_sta_enrollee_pin_5g function. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Tew 755Ap Firmware
NVD
CVSS 3.1
9.8
EPSS
2.3%
CVE-2022-46597 CRITICAL POC Act Now

TRENDnet TEW755AP 1.13B01 was discovered to contain a command injection vulnerability via the sys_service parameter in the setup_wizard_mydlink (sub_4104B8) function. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Tew 755Ap Firmware
NVD
CVSS 3.1
9.8
EPSS
2.3%
CVE-2022-46596 CRITICAL POC Act Now

TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the del_num parameter in the icp_delete_img (sub_41DEDC) function. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Buffer Overflow Tew 755Ap Firmware
NVD
CVSS 3.1
9.8
EPSS
0.9%
CVE-2022-46594 CRITICAL POC Act Now

TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the update_file_name parameter in the auto_up_fw (sub_420A04) function. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Buffer Overflow Tew 755Ap Firmware
NVD
CVSS 3.1
9.8
EPSS
0.9%
CVE-2022-46593 CRITICAL POC Act Now

TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the wps_sta_enrollee_pin parameter in the do_sta_enrollee_wifi function. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Buffer Overflow Tew 755Ap Firmware
NVD
CVSS 3.1
9.8
EPSS
0.9%
CVE-2022-46592 CRITICAL POC Act Now

TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the wps_sta_enrollee_pin parameter in the set_sta_enrollee_pin_5g function. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Buffer Overflow Tew 755Ap Firmware
NVD
CVSS 3.1
9.8
EPSS
0.9%
CVE-2022-46591 CRITICAL POC Act Now

TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the reject_url parameter in the reject (sub_41BD60) function. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Buffer Overflow Tew 755Ap Firmware
NVD
CVSS 3.1
9.8
EPSS
0.9%
CVE-2022-46590 CRITICAL POC Act Now

TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the cameo.cameo.netstat_rsname parameter in the tools_netstat (sub_41E730) function. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Buffer Overflow Tew 755Ap Firmware
NVD
CVSS 3.1
9.8
EPSS
1.0%
CVE-2022-46589 CRITICAL POC Act Now

TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the cameo.cameo.netstat_option parameter in the tools_netstat (sub_41E730) function. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Buffer Overflow Tew 755Ap Firmware
NVD
CVSS 3.1
9.8
EPSS
1.0%
CVE-2022-46588 CRITICAL POC Act Now

TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the sys_service parameter in the setup_wizard_mydlink (sub_4104B8) function. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Buffer Overflow Tew 755Ap Firmware
NVD
CVSS 3.1
9.8
EPSS
0.9%
CVE-2022-46586 CRITICAL POC Act Now

TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the qcawifi.wifi%d_vap%d.maclist parameter in the kick_ban_wifi_mac_allow (sub_415B00) function. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Buffer Overflow Tew 755Ap Firmware
NVD
CVSS 3.1
9.8
EPSS
1.0%
CVE-2022-46585 CRITICAL POC Act Now

TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the REMOTE_USER parameter in the get_access (sub_45AC2C) function. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Buffer Overflow Tew 755Ap Firmware
NVD
CVSS 3.1
9.8
EPSS
0.9%
CVE-2022-46584 CRITICAL POC Act Now

TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the qcawifi.wifi%d_vap%d.maclist parameter in the kick_ban_wifi_mac_deny (sub_415D7C) function. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Buffer Overflow Tew 755Ap Firmware
NVD
CVSS 3.1
9.8
EPSS
1.0%
CVE-2022-46583 CRITICAL POC Act Now

TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the reboot_type parameter in the wizard_ipv6 (sub_41C380) function. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Buffer Overflow Tew 755Ap Firmware
NVD
CVSS 3.1
9.8
EPSS
0.9%
CVE-2022-46582 CRITICAL POC Act Now

TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the login_name parameter in the do_graph_auth (sub_4061E0) function. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Buffer Overflow Tew 755Ap Firmware
NVD
CVSS 3.1
9.8
EPSS
0.9%
CVE-2022-46581 CRITICAL POC Act Now

TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the cameo.cameo.nslookup_target parameter in the tools_nslookup function. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Buffer Overflow Tew 755Ap Firmware
NVD
CVSS 3.1
9.8
EPSS
0.9%
CVE-2022-46580 CRITICAL POC Act Now

TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the user_edit_page parameter in the wifi_captive_portal function. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Buffer Overflow Tew 755Ap Firmware
NVD
CVSS 3.1
9.8
EPSS
0.9%
CVE-2022-4855 CRITICAL POC THREAT Act Now

A vulnerability, which was classified as critical, was found in SourceCodester Lead Management System 1.0. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Lead Management System
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
26.5%
CVE-2022-48194 HIGH POC THREAT This Week

TP-Link TL-WR902AC devices through V3 0.9.1 allow remote authenticated attackers to execute arbitrary code or cause a Denial of Service (DoS) by uploading a crafted firmware update because the. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service RCE TP-Link File Upload Tl Wr902Ac Firmware
NVD GitHub Exploit-DB
CVSS 3.1
8.8
EPSS
33.5%
CVE-2022-4857 HIGH POC This Week

A vulnerability was found in Modbus Tools Modbus Poll up to 9.10.0 and classified as critical. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Modbus Poll
NVD GitHub VulDB
CVSS 3.1
7.8
EPSS
0.7%
CVE-2022-4856 HIGH POC This Week

A vulnerability has been found in Modbus Tools Modbus Slave up to 7.5.1 and classified as critical. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Modbus Slave
NVD GitHub VulDB
CVSS 3.1
7.8
EPSS
0.6%
CVE-2022-47116 HIGH POC This Week

Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the SYSPS parameter at /goform/SysToolChangePwd. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Tenda Buffer Overflow A15 Firmware
NVD
CVSS 3.1
7.5
EPSS
0.8%
CVE-2022-44137 HIGH POC This Week

SourceCodester Sanitization Management System 1.0 is vulnerable to SQL Injection. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Sanitization Management System
NVD GitHub
CVSS 3.1
7.2
EPSS
0.8%
CVE-2022-4863 MEDIUM POC PATCH This Month

Improper Handling of Insufficient Permissions or Privileges in GitHub repository usememos/memos prior to 0.9.1. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Information Disclosure Memos
NVD GitHub
CVSS 3.1
6.5
EPSS
0.7%
CVE-2022-4860 CRITICAL PATCH Act Now

A vulnerability was found in KBase Metrics. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This SQL Injection vulnerability could allow attackers to execute arbitrary SQL commands against the database.

SQLi Metrics
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
0.6%
CVE-2022-44621 CRITICAL PATCH Act Now

Diagnosis Controller miss parameter validation, so user may attacked by command injection via HTTP Request. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Command Injection Kylin
NVD
CVSS 3.1
9.8
EPSS
3.0%
CVE-2022-48196 CRITICAL PATCH Act Now

Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Buffer Copy without Size Check vulnerability could allow attackers to overflow a buffer to corrupt adjacent memory.

Netgear Buffer Overflow Rax40 Firmware Rax35 Firmware R6400V2 Firmware +6
NVD
CVSS 3.1
9.8
EPSS
0.9%
CVE-2022-4864 MEDIUM POC PATCH This Month

Argument Injection in GitHub repository froxlor/froxlor prior to 2.0.0-beta1. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Code Injection Froxlor
NVD GitHub
CVSS 3.1
5.4
EPSS
0.5%
CVE-2022-34671 HIGH This Week

NVIDIA GPU Display Driver for Windows contains a vulnerability in the user-mode layer, where an unprivileged user can cause an out-of-bounds write, which may lead to code execution, information. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Denial Of Service Buffer Overflow Microsoft Nvidia +3
NVD
CVSS 3.1
8.8
EPSS
1.4%
CVE-2022-43396 HIGH PATCH This Week

In the fix for CVE-2022-24697, a blacklist is used to filter user input commands. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity.

Authentication Bypass Kylin
NVD
CVSS 3.1
8.8
EPSS
56.8%
CVE-2022-42269 HIGH This Week

NVIDIA Trusted OS contains a vulnerability in an SMC call handler, where failure to validate untrusted input may allow a highly privileged local attacker to cause information disclosure and. Rated high severity (CVSS 7.9), this vulnerability is low attack complexity. No vendor patch available.

Nvidia Information Disclosure Jetson Linux
NVD
CVSS 3.1
7.9
EPSS
0.2%
CVE-2022-42270 HIGH This Week

NVIDIA distributions of Linux contain a vulnerability in nvdla_emu_task_submit, where unvalidated input may allow a local attacker to cause stack-based buffer overflow in kernel code, which may lead. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Linux Buffer Overflow Nvidia Stack Overflow +1
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2022-42267 HIGH This Week

NVIDIA GPU Display Driver for Windows contains a vulnerability where a regular user can cause an out-of-bounds read, which may lead to code execution, denial of service, escalation of privileges,. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Denial Of Service Buffer Overflow Microsoft Nvidia +2
NVD
CVSS 3.1
7.8
EPSS
0.1%
CVE-2022-42264 HIGH This Week

NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer, where an unprivileged regular user can cause the use of an out-of-range pointer offset, which may lead to data. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Linux Nvidia Information Disclosure Memory Corruption +3
NVD
CVSS 3.1
7.8
EPSS
0.3%
Page 1 of 2 Next

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy