Search Results | AttackerKB

Show filters

Topics 35 Users 9,713

Clear All

Disclosure Date

Disclosure Year Disclosure Month

Collection Command and Control Credential Access Defense Evasion Discovery Execution Exfiltration Impact Initial Access Lateral Movement Persistence Privilege Escalation

35 Total Results

Displaying 21-30 of 35

Attacker Value

Unknown

CVE-2022-32037

Disclosure Date: July 01, 2022 (last updated February 24, 2025)

Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the function formSetAPCfg.

Attack Vector: Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2022-32036

Disclosure Date: July 01, 2022 (last updated February 24, 2025)

Tenda M3 V1.0.0.12 was discovered to contain multiple stack overflow vulnerabilities via the ssidList, storeName, and trademark parameters in the function formSetStoreWeb.

Attack Vector: Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2022-32035

Disclosure Date: July 01, 2022 (last updated February 24, 2025)

Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the function formMasterMng.

Attack Vector: Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2022-32034

Disclosure Date: July 01, 2022 (last updated February 24, 2025)

Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the items parameter in the function formdelMasteraclist.

Attack Vector: Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2022-27083

Disclosure Date: March 24, 2022 (last updated February 23, 2025)

Tenda M3 1.10 V1.0.0.12(4856) was discovered to contain a command injection vulnerability via the component /cgi-bin/uploadAccessCodePic.

Attack Vector: Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2022-27082

Disclosure Date: March 24, 2022 (last updated February 23, 2025)

Tenda M3 1.10 V1.0.0.12(4856) was discovered to contain a command injection vulnerability via the component /goform/SetInternetLanInfo.

Attack Vector: Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2022-27081

Disclosure Date: March 24, 2022 (last updated February 23, 2025)

Tenda M3 1.10 V1.0.0.12(4856) was discovered to contain a command injection vulnerability via the component /goform/SetLanInfo.

Attack Vector: Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2022-27080

Disclosure Date: March 24, 2022 (last updated February 23, 2025)

Tenda M3 1.10 V1.0.0.12(4856) was discovered to contain a command injection vulnerability via the component /goform/setWorkmode.

Attack Vector: Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2022-27079

Disclosure Date: March 24, 2022 (last updated February 23, 2025)

Tenda M3 1.10 V1.0.0.12(4856) was discovered to contain a command injection vulnerability via the component /goform/setPicListItem.

Attack Vector: Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2022-27078

Disclosure Date: March 24, 2022 (last updated February 23, 2025)

Tenda M3 1.10 V1.0.0.12(4856) was discovered to contain a command injection vulnerability via the component /goform/setAdInfoDetail.

Attack Vector: Network Privileges: None User Interaction: None

0