Search Results | AttackerKB

Show filters

Topics 91 Users 9,714

Clear All

Disclosure Date

Disclosure Year Disclosure Month

Collection Command and Control Credential Access Defense Evasion Discovery Execution Exfiltration Impact Initial Access Lateral Movement Persistence Privilege Escalation

91 Total Results

Displaying 51-60 of 91

Attacker Value

Unknown

CVE-2022-27078

Disclosure Date: March 24, 2022 (last updated February 23, 2025)

Tenda M3 1.10 V1.0.0.12(4856) was discovered to contain a command injection vulnerability via the component /goform/setAdInfoDetail.

Attack Vector: Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2022-27077

Disclosure Date: March 24, 2022 (last updated February 23, 2025)

Tenda M3 1.10 V1.0.0.12(4856) was discovered to contain a command injection vulnerability via the component /cgi-bin/uploadWeiXinPic.

Attack Vector: Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2022-27076

Disclosure Date: March 24, 2022 (last updated February 23, 2025)

Tenda M3 1.10 V1.0.0.12(4856) was discovered to contain a command injection vulnerability via the component /goform/delAd.

Attack Vector: Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2022-26536

Disclosure Date: March 24, 2022 (last updated February 23, 2025)

Tenda M3 1.10 V1.0.0.12(4856) was discovered to contain a command injection vulnerability via the component /goform/setFixTools.

Attack Vector: Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2022-26290

Disclosure Date: March 24, 2022 (last updated February 23, 2025)

Tenda M3 1.10 V1.0.0.12(4856) was discovered to contain a command injection vulnerability via the component /goform/WriteFacMac.

Attack Vector: Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2022-26289

Disclosure Date: March 24, 2022 (last updated February 23, 2025)

Tenda M3 1.10 V1.0.0.12(4856) was discovered to contain a command injection vulnerability via the component /goform/exeCommand.

Attack Vector: Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2021-0156

Disclosure Date: February 09, 2022 (last updated February 23, 2025)

Improper input validation in the firmware for some Intel(R) Processors may allow an authenticated user to potentially enable an escalation of privilege via local access.

Attack Vector: Local Privileges: Low User Interaction: None

0

Attacker Value

Unknown

CVE-2021-0125

Disclosure Date: February 09, 2022 (last updated February 23, 2025)

Improper initialization in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via physical access.

Attack Vector: Physical Privileges: Low User Interaction: None

0

Attacker Value

Unknown

CVE-2021-0124

Disclosure Date: February 09, 2022 (last updated February 23, 2025)

Improper access control in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via physical access.

Attack Vector: Physical Privileges: Low User Interaction: None

0

Attacker Value

Unknown

CVE-2021-0119

Disclosure Date: February 09, 2022 (last updated February 23, 2025)

Improper initialization in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via physical access.

Attack Vector: Physical Privileges: High User Interaction: None

0