0.0

CVE-2024-4285 -

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

πŸ“… Published: April 26, 2024, 11:30 p.m. πŸ”„ Last Modified: Feb. 11, 2025, 2:15 a.m.

8.8

CVSS3.1

CVE-2024-4244 - Tenda W9 DhcpSetSer fromDhcpSetSer stack-based overflow

A vulnerability classified as critical was found in Tenda W9 1.0.0.7(4456). Affected by this vulnerability is the function fromDhcpSetSer of the file /goform/DhcpSetSer. The manipulation of the argument dhcpStartIp/dhcpEndIp/dhcpGw/dhcpMask/dhcpLeaseTime/dhcpDns1/dhcpDns2 leads to stack-based buffe…

πŸ“… Published: April 26, 2024, 9:31 p.m. πŸ”„ Last Modified: Jan. 27, 2025, 6:28 p.m.

8.8

CVSS3.1

CVE-2024-4243 - Tenda W9 wifiSSIDset formwrlSSIDset stack-based overflow

A vulnerability classified as critical has been found in Tenda W9 1.0.0.7(4456). Affected is the function formwrlSSIDset of the file /goform/wifiSSIDset. The manipulation of the argument ssidIndex leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has be…

πŸ“… Published: April 26, 2024, 9:31 p.m. πŸ”„ Last Modified: Jan. 27, 2025, 6:28 p.m.

7.5

CVSS3.1

CVE-2024-3052 - Z/IP Gateway S2 Nonce Get Denial of Service Vulnerability

Malformed S2 Nonce Get command classes can be sent to crash the gateway. A hard reset is required to recover the gateway.

πŸ“… Published: April 26, 2024, 9:27 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

7.5

CVSS3.1

CVE-2024-3051 - Z/IP Gateway Device Reset Locally Denial of Service Vulnerability

Malformed Device Reset Locally command classes can be sent to temporarily deny service to an end device. Any frames sent by the end device will not be acknowledged by the gateway during this time.

πŸ“… Published: April 26, 2024, 9:26 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

7.7

CVSS3.1

CVE-2024-32883 - MCUboot Injection attack of unprotected TLV values

MCUboot is a secure bootloader for 32-bits microcontrollers. MCUboot uses a TLV (tag-length-value) structure to represent the meta data associated with an image. The TLVs themselves are divided into two sections, a protected and an unprotected section. The protected TLV entries are included as par…

πŸ“… Published: April 26, 2024, 9:03 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

0.0

CVE-2024-4276 -

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

πŸ“… Published: April 26, 2024, 9:02 p.m. πŸ”„ Last Modified: Feb. 11, 2025, 2:15 a.m.

8.8

CVSS3.1

CVE-2024-4242 - Tenda W9 wifiSSIDget formwrlSSIDget stack-based overflow

A vulnerability was found in Tenda W9 1.0.0.7(4456). It has been rated as critical. This issue affects the function formwrlSSIDget of the file /goform/wifiSSIDget. The manipulation of the argument ssidIndex leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has …

πŸ“… Published: April 26, 2024, 9 p.m. πŸ”„ Last Modified: Jan. 27, 2025, 6:29 p.m.

8.8

CVSS3.1

CVE-2024-4241 - Tenda W9 formQosManageDouble_auto stack-based overflow

A vulnerability was found in Tenda W9 1.0.0.7(4456). It has been declared as critical. This vulnerability affects the function formQosManageDouble_auto. The manipulation of the argument ssidIndex leads to stack-based buffer overflow. The attack can be initiated remotely. The identifier of this vuln…

πŸ“… Published: April 26, 2024, 9 p.m. πŸ”„ Last Modified: Jan. 27, 2025, 6:29 p.m.

9.8

CVSS3.1

CVE-2024-32881 - Unauthorized access to GET/SET of Slack Bot Tokens in Danswer

Danswer is the AI Assistant connected to company's docs, apps, and people. Danswer is vulnerable to unauthorized access to GET/SET of Slack Bot Tokens. Anyone with network access can steal slack bot tokens and set them. This implies full compromise of the customer's slack bot, leading to internal S…

πŸ“… Published: April 26, 2024, 8:46 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.
Total resulsts: 349182
Page 10151 of 34,919
Β« previous page Β» next page
Filters