Security Vulnerabilities, CVEs,
TCPDF before 6.7.4 mishandles calls that use HTML syntax.
Max CVSS
N/A
EPSS Score
0.05%
Published
2024-04-15
Updated
2024-04-15
In Foxit PDF Reader and Editor before 2024.1, Local Privilege Escalation could occur during update checks because weak permissions on the update-service folder allow attackers to place crafted DLL files there.
Max CVSS
N/A
EPSS Score
0.04%
Published
2024-04-15
Updated
2024-04-15
less through 653 allows OS command execution via a newline character in the name of a file, because quoting is mishandled in filename.c. Exploitation typically requires use with attacker-controlled file names, such as the files extracted from an untrusted archive. Exploitation also requires the LESSOPEN environment variable, but this is set by default in many common cases.
Max CVSS
N/A
EPSS Score
0.05%
Published
2024-04-13
Updated
2024-04-15
Tenda AC500 V2.0.1.9(1307) firmware has a stack overflow vulnerability via the timeZone parameter in the formSetTimeZone function.
Max CVSS
N/A
EPSS Score
N/A
Published
2024-04-17
Updated
2024-04-17
Tenda AC500 V2.0.1.9(1307) firmware has a stack overflow vulnerability via the vlan parameter in the formSetVlanInfo function.
Max CVSS
N/A
EPSS Score
N/A
Published
2024-04-17
Updated
2024-04-17
Tenda AC10 v4.0 V16.03.10.13 and V16.03.10.20 firmware has a stack overflow vulnerability via the adslPwd parameter in the formWanParameterSetting function.
Max CVSS
N/A
EPSS Score
N/A
Published
2024-04-17
Updated
2024-04-17
Tenda AC500 V2.0.1.9(1307) firmware has a stack overflow vulnerability in the fromDhcpListClient function.
Max CVSS
N/A
EPSS Score
N/A
Published
2024-04-17
Updated
2024-04-17
Tenda FH1202 v1.2.0.14(408) firmware has a stack overflow vulnerability via the adslPwd parameter in the formWanParameterSetting function.
Max CVSS
N/A
EPSS Score
N/A
Published
2024-04-17
Updated
2024-04-17
Tenda AC500 V2.0.1.9(1307) firmware contains a command injection vulnerablility in the formexeCommand function via the cmdinput parameter.
Max CVSS
N/A
EPSS Score
N/A
Published
2024-04-17
Updated
2024-04-17
Tenda FH1205 V2.0.0.7(775) firmware has a stack overflow vulnerability located via the adslPwd parameter of the formWanParameterSetting function.
Max CVSS
N/A
EPSS Score
N/A
Published
2024-04-17
Updated
2024-04-17
Tenda F1203 V2.0.1.6 firmware has a stack overflow vulnerability located in the adslPwd parameter of the formWanParameterSetting function.
Max CVSS
N/A
EPSS Score
N/A
Published
2024-04-17
Updated
2024-04-17
Tenda FH1203 v2.0.1.6 firmware has a stack overflow vulnerability via the adslPwd parameter in the formWanParameterSetting function.
Max CVSS
N/A
EPSS Score
N/A
Published
2024-04-17
Updated
2024-04-17
Tenda F1203 V2.0.1.6 firmware has a stack overflow vulnerability located in the PPW parameter of the fromWizardHandle function.
Max CVSS
N/A
EPSS Score
N/A
Published
2024-04-17
Updated
2024-04-17
Tenda FH1205 V2.0.0.7(775) firmware has a stack overflow vulnerability located via the PPW parameter in the fromWizardHandle function.
Max CVSS
N/A
EPSS Score
N/A
Published
2024-04-17
Updated
2024-04-17
Tenda AC10U v1.0 Firmware v15.03.06.49 has a stack overflow vulnerability located via the PPW parameter in the fromWizardHandle function.
Max CVSS
N/A
EPSS Score
N/A
Published
2024-04-17
Updated
2024-04-17
Tenda A18 v15.03.05.05 firmware has a stack overflow vulnerability located via the PPW parameter in the fromWizardHandle function.
Max CVSS
N/A
EPSS Score
N/A
Published
2024-04-17
Updated
2024-04-17
Tenda AC15 v15.03.20_multi, v15.03.05.19, and v15.03.05.18 firmware has a stack overflow vulnerability located via the PPW parameter in the fromWizardHandle function.
Max CVSS
N/A
EPSS Score
N/A
Published
2024-04-17
Updated
2024-04-17
Tenda FH1202 v1.2.0.14(408) firmware has a stack overflow vulnerability via the PPW parameter in the fromWizardHandle function.
Max CVSS
N/A
EPSS Score
N/A
Published
2024-04-17
Updated
2024-04-17
Tenda AC7V1.0 v15.03.06.44 firmware has a stack overflow vulnerability via the PPW parameter in the fromWizardHandle function.
Max CVSS
N/A
EPSS Score
N/A
Published
2024-04-17
Updated
2024-04-17
Tenda FH1203 v2.0.1.6 firmware has a stack overflow vulnerability via the PPW parameter in the fromWizardHandle function.
Max CVSS
N/A
EPSS Score
N/A
Published
2024-04-17
Updated
2024-04-17
Tenda W30E v1.0 V1.0.1.25(633) firmware has a stack overflow vulnerability via the page parameter in the fromDhcpListClient function.
Max CVSS
N/A
EPSS Score
N/A
Published
2024-04-17
Updated
2024-04-17
Tenda W30E v1.0 V1.0.1.25(633) firmware contains a command injection vulnerablility in the formexeCommand function via the cmdinput parameter.
Max CVSS
N/A
EPSS Score
N/A
Published
2024-04-17
Updated
2024-04-17
Tenda W30E v1.0 firmware v1.0.1.25(633) has a stack overflow vulnerability via the page parameter in the fromNatlimit function.
Max CVSS
N/A
EPSS Score
N/A
Published
2024-04-17
Updated
2024-04-17
Tenda W30E v1.0 v1.0.1.25(633) firmware has a stack overflow vulnerability via the page parameter in the fromAddressNat function.
Max CVSS
N/A
EPSS Score
N/A
Published
2024-04-17
Updated
2024-04-17
Tenda W30E v1.0 V1.0.1.25(633) firmware has a stack overflow vulnerability located via the page parameter in the fromwebExcptypemanFilter function.
Max CVSS
N/A
EPSS Score
N/A
Published
2024-04-17
Updated
2024-04-17
3492 vulnerabilities found
1
2
3
4
5
6 ......
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140