exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 3

CVE-2023-0782

почти 3 года назад

A vulnerability was found in Tenda AC23 16.03.07.45 and classified as critical. Affected by this issue is the function formSetSysToolDDNS/formGetSysToolDDNS of the file /bin/httpd. The manipulation leads to out-of-bounds write. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-220640.

CVSS3: 7.2

EPSS: Низкий

GHSA-mjgf-fjmw-jf84

почти 3 года назад

A vulnerability was found in Tenda AC23 16.03.07.45 and classified as critical. Affected by this issue is the function formSetSysToolDDNS/formGetSysToolDDNS of the file /bin/httpd. The manipulation leads to stack-based buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-220640.

CVSS3: 9.8

EPSS: Низкий

BDU:2023-08684

почти 3 года назад

Уязвимость функции formSetSysToolDDNS/formGetSysToolDDNS микропрограммного обеспечения маршрутизаторов Tenda AC23, позволяющая нарушителю вызвать отказ в обслуживании

CVSS3: 9.8

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2023-0782 A vulnerability was found in Tenda AC23 16.03.07.45 and classified as critical. Affected by this issue is the function formSetSysToolDDNS/formGetSysToolDDNS of the file /bin/httpd. The manipulation leads to out-of-bounds write. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-220640.	CVSS3: 7.2	0% Низкий	почти 3 года назад
GHSA-mjgf-fjmw-jf84 A vulnerability was found in Tenda AC23 16.03.07.45 and classified as critical. Affected by this issue is the function formSetSysToolDDNS/formGetSysToolDDNS of the file /bin/httpd. The manipulation leads to stack-based buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-220640.	CVSS3: 9.8	0% Низкий	почти 3 года назад
BDU:2023-08684 Уязвимость функции formSetSysToolDDNS/formGetSysToolDDNS микропрограммного обеспечения маршрутизаторов Tenda AC23, позволяющая нарушителю вызвать отказ в обслуживании	CVSS3: 9.8	0% Низкий	почти 3 года назад

Уязвимостей на страницу