Export limit exceeded: 20209 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (20209 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2022-36273 | 1 Tenda | 2 Ac9, Ac9 Firmware | 2024-11-21 | 9.8 Critical |
| Tenda AC9 V15.03.2.21_cn is vulnerable to command injection via goform/SetSysTimeCfg. | ||||
| CVE-2022-36233 | 1 Tendacn | 2 Ac9, Ac9 Firmware | 2024-11-21 | 5.5 Medium |
| Tenda AC9 V15.03.2.13 is vulnerable to Buffer Overflow via httpd, form_fast_setting_wifi_set. httpd. | ||||
| CVE-2022-36191 | 1 Gpac | 1 Gpac | 2024-11-21 | 5.5 Medium |
| A heap-buffer-overflow had occurred in function gf_isom_dovi_config_get of isomedia/avc_ext.c:2490, as demonstrated by MP4Box. This vulnerability was fixed in commit fef6242. | ||||
| CVE-2022-36150 | 1 Monostream | 1 Tifig | 2024-11-21 | 5.5 Medium |
| tifig v0.2.2 was discovered to contain a heap-buffer overflow via __asan_memmove at /asan/asan_interceptors_memintrinsics.cpp. | ||||
| CVE-2022-36144 | 1 Swfmill | 1 Swfmill | 2024-11-21 | 7.8 High |
| SWFMill commit 53d7690 was discovered to contain a heap-buffer overflow via base64_encode. | ||||
| CVE-2022-36143 | 1 Swfmill | 1 Swfmill | 2024-11-21 | 7.8 High |
| SWFMill commit 53d7690 was discovered to contain a heap-buffer overflow via __interceptor_strlen.part at /sanitizer_common/sanitizer_common_interceptors.inc. | ||||
| CVE-2022-36142 | 1 Swfmill | 1 Swfmill | 2024-11-21 | 7.8 High |
| SWFMill commit 53d7690 was discovered to contain a heap-buffer overflow via SWF::Reader::getU30(). | ||||
| CVE-2022-36139 | 1 Swfmill | 1 Swfmill | 2024-11-21 | 7.8 High |
| SWFMill commit 53d7690 was discovered to contain a heap-buffer overflow via SWF::Writer::writeByte(unsigned char). | ||||
| CVE-2022-35845 | 1 Fortinet | 1 Fortitester | 2024-11-21 | 7.6 High |
| Multiple improper neutralization of special elements used in an OS Command ('OS Command Injection') vulnerabilities [CWE-78] in FortiTester 7.1.0, 7.0 all versions, 4.0.0 through 4.2.0, 2.3.0 through 3.9.1 may allow an authenticated attacker to execute arbitrary commands in the underlying shell. | ||||
| CVE-2022-35844 | 1 Fortinet | 1 Fortitester | 2024-11-21 | 6.7 Medium |
| An improper neutralization of special elements used in an OS command vulnerability [CWE-78] in the management interface of FortiTester 2.3.0 through 3.9.1, 4.0.0 through 4.2.0, 7.0.0 through 7.1.0 may allow an authenticated attacker to execute unauthorized commands via specifically crafted arguments to commands of the certificate import feature. | ||||
| CVE-2022-35624 | 1 Nordicsemi | 1 Nrf5 Sdk For Mesh | 2024-11-21 | 8.2 High |
| In Nordic nRF5 SDK for Mesh 5.0, a heap overflow vulnerability can be triggered by sending a series of segmented packets with SegO > SegN | ||||
| CVE-2022-35623 | 1 Nordicsemi | 1 Nrf5 Sdk For Mesh | 2024-11-21 | 8.2 High |
| In Nordic nRF5 SDK for Mesh 5.0, a heap overflow vulnerability can be triggered by sending a series of segmented control packets and access packets with the same SeqAuth | ||||
| CVE-2022-35561 | 1 Tenda | 2 W6, W6 Firmware | 2024-11-21 | 7.5 High |
| A stack overflow vulnerability exists in /goform/WifiMacFilterSet in Tenda W6 V1.0.0.9(4122) version, which can be exploited by attackers to cause a denial of service (DoS) via the index parameter. | ||||
| CVE-2022-35560 | 1 Tenda | 2 W6, W6 Firmware | 2024-11-21 | 7.5 High |
| A stack overflow vulnerability exists in /goform/wifiSSIDset in Tenda W6 V1.0.0.9(4122) version, which can be exploited by attackers to cause a denial of service (DoS) via the index parameter. | ||||
| CVE-2022-35559 | 1 Tenda | 2 W6, W6 Firmware | 2024-11-21 | 9.8 Critical |
| A stack overflow vulnerability exists in /goform/setAutoPing in Tenda W6 V1.0.0.9(4122), which allows an attacker to construct ping1 parameters and ping2 parameters for a stack overflow attack. An attacker can use this vulnerability to execute arbitrary code execution. | ||||
| CVE-2022-35558 | 1 Tenda | 2 W6, W6 Firmware | 2024-11-21 | 7.5 High |
| A stack overflow vulnerability exists in /goform/WifiMacFilterGet in Tenda W6 V1.0.0.9(4122) version, which can be exploited by attackers to cause a denial of service (DoS) via the index parameter. | ||||
| CVE-2022-35557 | 1 Tenda | 2 W6, W6 Firmware | 2024-11-21 | 7.5 High |
| A stack overflow vulnerability exists in /goform/wifiSSIDget in Tenda W6 V1.0.0.9(4122) version, which can be exploited by attackers to cause a denial of service (DoS) via the index parameter. | ||||
| CVE-2022-35555 | 1 Tenda | 2 W6, W6 Firmware | 2024-11-21 | 9.8 Critical |
| A command injection vulnerability exists in /goform/exeCommand in Tenda W6 V1.0.0.9(4122), which allows attackers to construct cmdinput parameters for arbitrary command execution. | ||||
| CVE-2022-35506 | 1 Triplecross Project | 1 Triplecross | 2024-11-21 | 7.5 High |
| TripleCross v0.1.0 was discovered to contain a stack overflow which occurs because there is no limit to the length of program parameters. | ||||
| CVE-2022-35475 | 1 Otfcc Project | 1 Otfcc | 2024-11-21 | 6.5 Medium |
| OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x6e41a8. | ||||