CVE Vulnerabilities
CVE vulnerability database enriched with CISA KEV and NVD data
| CVE ID | CVSS | Severity | KEV | Sightings |
|---|---|---|---|---|
| CVE-2023-49436 Tenda AX9 V22.03.01.46 has been discovered to contain a command injection vulnerability in the 'list' parameter at /goform/SetNetControlList. | 9.8 | CRITICAL | β | 0 |
| CVE-2023-51034 TOTOlink EX1200L V9.3.5u.6146_B20201023 is vulnerable to arbitrary command execution via the cstecgi.cgi UploadFirmwareFile interface. | 9.8 | CRITICAL | β | 0 |
| CVE-2023-51094 Tenda M3 V1.0.0.12(4856) was discovered to contain a Command Execution vulnerability via the function TendaTelnet. | 9.8 | CRITICAL | β | 0 |
| CVE-2023-49402 Tenda W30E V16.01.0.12(4843) was discovered to contain a stack overflow via the function localMsg. | 9.8 | CRITICAL | β | 0 |
| CVE-2023-49403 Tenda W30E V16.01.0.12(4843) was discovered to contain a command injection vulnerability via the function setFixTools. | 9.8 | CRITICAL | β | 0 |
| CVE-2023-49410 Tenda W30E V16.01.0.12(4843) was discovered to contain a stack overflow via the function via the function set_wan_status. | 9.8 | CRITICAL | β | 0 |
| CVE-2023-49999 Tenda W30E V16.01.0.12(4843) was discovered to contain a command injection vulnerability via the function setUmountUSBPartition. | 9.8 | CRITICAL | β | 0 |
| CVE-2023-50000 Tenda W30E V16.01.0.12(4843) was discovered to contain a stack overflow via the function formResetMeshNode. | 9.8 | CRITICAL | β | 0 |
| CVE-2023-50001 Tenda W30E V16.01.0.12(4843) was discovered to contain a stack overflow via the function formUpgradeMeshOnline. | 9.8 | CRITICAL | β | 0 |
| CVE-2023-50002 Tenda W30E V16.01.0.12(4843) was discovered to contain a stack overflow via the function formRebootMeshNode. | 9.8 | CRITICAL | β | 0 |
| CVE-2023-51035 TOTOLINK EX1200L V9.3.5u.6146_B20201023 is vulnerable to arbitrary command execution on the cstecgi.cgi NTPSyncWithHost interface. | 9.8 | CRITICAL | β | 0 |
| CVE-2023-49405 Tenda W30E V16.01.0.12(4843) was discovered to contain a stack overflow via the function UploadCfg. | 9.8 | CRITICAL | β | 0 |
| CVE-2023-49406 Tenda W30E V16.01.0.12(4843) was discovered to contain a Command Execution vulnerability via the function /goform/telnet. | 9.8 | CRITICAL | β | 0 |
| CVE-2023-49408 Tenda AX3 V16.03.12.11 was discovered to contain a stack overflow via the function set_device_name. | 9.8 | CRITICAL | β | 0 |
| CVE-2023-49409 Tenda AX3 V16.03.12.11 was discovered to contain a Command Execution vulnerability via the function /goform/telnet. | 9.8 | CRITICAL | β | 0 |
| CVE-2023-49411 Tenda W30E V16.01.0.12(4843) contains a stack overflow vulnerability via the function formDeleteMeshNode. | 9.8 | CRITICAL | β | 0 |
| CVE-2023-43364 main.py in Searchor before 2.4.2 uses eval on CLI input, which may cause unexpected code execution. | 9.8 | CRITICAL | β | 0 |
| CVE-2023-5008 Student Information System v1.0 is vulnerable to an unauthenticated SQL Injection vulnerability on the 'regno' parameter of index.php page, allowing an external attacker to dump all the contents of th... | 9.8 | CRITICAL | β | 0 |
| CVE-2023-43742 An authentication bypass in Zultys MX-SE, MX-SE II, MX-E, MX-Virtual, MX250, and MX30 with firmware versions prior to 17.0.10 patch 17161 and 16.04 patch 16109 allows an unauthenticated attacker to ob... | 9.8 | CRITICAL | β | 0 |
| CVE-2023-48929 Franklin Fueling Systems System Sentinel AnyWare (SSA) version 1.6.24.492 is vulnerable to Session Fixation. The 'sid' parameter in the group_status.asp resource allows an attacker to escalate privile... | 9.8 | CRITICAL | β | 0 |
| CVE-2023-49007 In Netgear Orbi RBR750 firmware before V7.2.6.21, there is a stack-based buffer overflow in /usr/sbin/httpd. | 9.8 | CRITICAL | β | 0 |
| CVE-2023-49443 DoraCMS v2.1.8 was discovered to re-use the same code for verification of valid usernames and passwords. This vulnerability allows attackers to gain access to the application via a bruteforce attack. | 9.8 | CRITICAL | β | 0 |
| CVE-2024-0642 Inadequate access control in the C21 Live Encoder and Live Mosaic product, version 5.3. This vulnerability allows a remote attacker to access the application as an administrator user through the appli... | 9.8 | CRITICAL | β | 0 |
| CVE-2024-21646 Azure uAMQP is a general purpose C library for AMQP 1.0. The UAMQP library is used by several clients to implement AMQP protocol communication. When clients using this library receive a crafted binar... | 9.8 | CRITICAL | β | 0 |
| CVE-2023-7102 Use of a Third Party library produced a vulnerability in Barracuda Networks Inc. Barracuda ESG Appliance which allowed Parameter Injection.This issue affected Barracuda ESG Appliance, from 5.1.3.001 t... | 9.8 | CRITICAL | β | 0 |
| CVE-2013-2513 The flash_tool gem through 0.6.0 for Ruby allows command execution via shell metacharacters in the name of a downloaded file. | 9.8 | CRITICAL | β | 0 |
| CVE-2023-6593 Client side permission bypass in Devolutions Remote Desktop Manager 2023.3.4.0 and earlier on iOS allows an attacker that has access to the application to execute entries in a SQL data source withou... | 9.8 | CRITICAL | β | 0 |
| CVE-2023-46456 In GL.iNET GL-AR300M routers with firmware 3.216 it is possible to inject arbitrary shell commands through the OpenVPN client file upload functionality. | 9.8 | CRITICAL | β | 0 |
| CVE-2023-7095 A vulnerability, which was classified as critical, has been found in Totolink A7100RU 7.4cu.2313_B20191024. Affected by this issue is the function main of the file /cgi-bin/cstecgi.cgi?action=login of... | 9.8 | CRITICAL | β | 0 |
| CVE-2023-52103 Buffer overflow vulnerability in the FLP module. Successful exploitation of this vulnerability may cause out-of-bounds read. | 9.8 | CRITICAL | β | 0 |
| CVE-2023-46454 In GL.iNET GL-AR300M routers with firmware v4.3.7, it is possible to inject arbitrary shell commands through a crafted package name in the package information functionality. | 9.8 | CRITICAL | β | 0 |
| CVE-2023-48423 In dhcp4_SetPDNAddress of dhcp4_Main.c, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. ... | 9.8 | CRITICAL | β | 0 |
| CVE-2022-34267 An issue was discovered in RWS WorldServer before 11.7.3. Adding a token parameter with the value of 02 bypasses all authentication requirements. Arbitrary Java code can be uploaded and executed via a... | 9.8 | CRITICAL | β | 0 |
| CVE-2023-50245 OpenEXR-viewer is a viewer for OpenEXR files with detailed metadata probing. Versions prior to 0.6.1 have a memory overflow vulnerability. This issue is fixed in version 0.6.1. | 9.8 | CRITICAL | β | 0 |
| CVE-2023-46498 An issue in EverShop NPM versions before v.1.0.0-rc.8 allows a remote attacker to obtain sensitive information and execute arbitrary code via the /deleteCustomer/route.json file. | 9.8 | CRITICAL | β | 0 |
| CVE-2024-22916 In D-LINK Go-RT-AC750 v101b03, the sprintf function in the sub_40E700 function within the cgibin is susceptible to stack overflow. | 9.8 | CRITICAL | β | 0 |
| CVE-2022-34268 An issue was discovered in RWS WorldServer before 11.7.3. /clientLogin deserializes Java objects without authentication, leading to command execution on the host. | 9.8 | CRITICAL | β | 0 |
| CVE-2023-31224 There is broken access control during authentication in Jamf Pro Server before 10.46.1. | 9.8 | CRITICAL | β | 0 |
| CVE-2023-49418 TOTOLink A7000R V9.1.0u.6115_B20201022has a stack overflow vulnerability via setIpPortFilterRules. | 9.8 | CRITICAL | β | 0 |
| CVE-2023-29486 An issue was discovered in Heimdal Thor agent versions 3.4.2 and before 3.7.0 on Windows, allows attackers to bypass USB access restrictions, execute arbitrary code, and obtain sensitive information v... | 9.8 | CRITICAL | β | 0 |
| CVE-2024-24496 An issue in Daily Habit Tracker v.1.0 allows a remote attacker to manipulate trackers via the home.php, add-tracker.php, delete-tracker.php, update-tracker.php components. | 9.8 | CRITICAL | β | 0 |
| CVE-2023-29485 An issue was discovered in Heimdal Thor agent versions 3.4.2 and before on Windows and 2.6.9 and before on macOS, allows attackers to bypass network filtering, execute arbitrary code, and obtain sensi... | 9.8 | CRITICAL | β | 0 |
| CVE-2023-51023 TOTOlink EX1800T v9.1.0cu.2112_B20220316 is vulnerable to arbitrary command execution in the βhost_timeβ parameter of the NTPSyncWithHost interface of the cstecgi .cgi. | 9.8 | CRITICAL | β | 0 |
| CVE-2024-24213 Supabase PostgreSQL v15.1 was discovered to contain a SQL injection vulnerability via the component /pg_meta/default/query. NOTE: the vendor's position is that this is an intended feature; also, it ex... | 9.8 | CRITICAL | β | 0 |
| CVE-2023-50061 PrestaShop Op'art Easy Redirect >= 1.3.8 and <= 1.3.12 is vulnerable to SQL Injection via Oparteasyredirect::hookActionDispatcher(). | 9.8 | CRITICAL | β | 0 |
| CVE-2023-50993 Ruijie WS6008 v1.x v2.x AC_RGOS11.9(6)W3B2_G2C6-01_10221911 and WS6108 v1.x AC_RGOS11.9(6)W3B2_G2C6-01_10221911 was discovered to contain a command injection vulnerability via the function downFiles. | 9.8 | CRITICAL | β | 0 |
| CVE-2023-50992 Tenda i29 v1.0 V1.0.0.5 was discovered to contain a stack overflow via the ip parameter in the setPing function. | 9.8 | CRITICAL | β | 0 |
| CVE-2023-50990 Tenda i29 v1.0 V1.0.0.5 was discovered to contain a buffer overflow via the rebootTime parameter in the sysScheduleRebootSet function. | 9.8 | CRITICAL | β | 0 |
| CVE-2023-50989 Tenda i29 v1.0 V1.0.0.5 was discovered to contain a command injection vulnerability via the pingSet function. | 9.8 | CRITICAL | β | 0 |
| CVE-2023-50988 Tenda i29 v1.0 V1.0.0.5 was discovered to contain a buffer overflow via the bandwidth parameter in the wifiRadioSetIndoor function. | 9.8 | CRITICAL | β | 0 |
This product uses data from the NVD API but is not endorsed or certified by the NVD.