Korey0sh1/IoT_vuln

Korey0sh1/IoT_vuln

Releases0

Stars5

Try to dig into Internet of Things.

Log in to subscribe

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2023-40915 ↗	Aug 25, 2023Friday, 25 August 2023, 15:15	7.5 HIGH	—
Tenda AX3 v16.03.12.11 has a stack buffer overflow vulnerability detected at function form_fast_setting_wifi_set. This vulnerability allows attackers to cause a Denial of Service (DoS) via the ssid parameter.
CVE-2023-40041 ↗	Aug 8, 2023Tuesday, 8 August 2023, 19:15	9.8 CRITICAL	—
TOTOLINK T10_v2 5.9c.5061_B20200511 has a stack-based buffer overflow in setWiFiWpsConfig in /lib/cste_modules/wps.so. Attackers can send crafted data in an MQTT packet, via the pin parameter, to control the return address and execute code.
CVE-2023-40042 ↗	Aug 8, 2023Tuesday, 8 August 2023, 19:15	9.8 CRITICAL	—
TOTOLINK T10_v2 5.9c.5061_B20200511 has a stack-based buffer overflow in setStaticDhcpConfig in /lib/cste_modules/lan.so. Attackers can send crafted data in an MQTT packet, via the comment parameter, to control the return address and execute code.