akuma-QAQ/CVEreport

Releases0

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2025-70245 ↗	Mar 12, 2026Thursday, 12 March 2026, 19:16	9.8 CRITICAL	—
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSetWizardSelectMode.
CVE-2025-70244 ↗	Mar 10, 2026Tuesday, 10 March 2026, 21:16	7.5 HIGH	—
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the webPage parameter to goform/formWlanSetup.
CVE-2025-70249 ↗	Mar 10, 2026Tuesday, 10 March 2026, 20:16	7.5 HIGH	—
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSetWizard2.
CVE-2025-70251 ↗	Mar 10, 2026Tuesday, 10 March 2026, 20:16	7.5 HIGH	—
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the webPage parameter to goform/formWlanGuestSetup.
CVE-2025-70247 ↗	Mar 10, 2026Tuesday, 10 March 2026, 20:16	7.5 HIGH	—
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSetWizard1.
CVE-2025-70246 ↗	Mar 10, 2026Tuesday, 10 March 2026, 20:16	7.5 HIGH	—
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formVirtualServ.
CVE-2025-70227 ↗	Mar 10, 2026Tuesday, 10 March 2026, 20:16	7.5 HIGH	—
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the nextPage parameter to goform/formLanguageChange.
CVE-2025-70242 ↗	Mar 10, 2026Tuesday, 10 March 2026, 20:16	7.5 HIGH	—
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the webPage parameter to goform/formSetWanPPTP.
CVE-2025-70250 ↗	Mar 9, 2026Monday, 9 March 2026, 15:15	7.5 HIGH	—
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formdumpeasysetup.
CVE-2025-70243 ↗	Mar 9, 2026Monday, 9 March 2026, 15:15	7.5 HIGH	—
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSetWAN_Wizard534.
CVE-2025-70238 ↗	Mar 9, 2026Monday, 9 March 2026, 15:15	7.5 HIGH	—
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSetWAN_Wizard52.
CVE-2025-70232 ↗	Mar 5, 2026Thursday, 5 March 2026, 19:16	9.8 CRITICAL	—
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSetMACFilter.
CVE-2025-70233 ↗	Mar 5, 2026Thursday, 5 March 2026, 19:16	9.8 CRITICAL	—
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSetEnableWizard.
CVE-2025-70230 ↗	Mar 5, 2026Thursday, 5 March 2026, 19:16	9.8 CRITICAL	—
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSetDDNS.
CVE-2025-70231 ↗	Mar 5, 2026Thursday, 5 March 2026, 19:16	9.8 CRITICAL	—
D-Link DIR-513 version 1.10 contains a critical-level vulnerability. When processing POST requests related to verification codes in /goform/formLogin, it enters /goform/getAuthCode but fails to filter the value of the FILECODE parameter, resulting in a path traversal vulnerability.
CVE-2025-70229 ↗	Mar 5, 2026Thursday, 5 March 2026, 19:16	9.8 CRITICAL	—
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSchedule.
CVE-2025-70222 ↗	Mar 4, 2026Wednesday, 4 March 2026, 22:16	9.8 CRITICAL	—
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formLogin,goform/getAuthCode.
CVE-2025-70221 ↗	Mar 4, 2026Wednesday, 4 March 2026, 21:16	9.8 CRITICAL	—
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formLogin.
CVE-2025-70225 ↗	Mar 4, 2026Wednesday, 4 March 2026, 21:16	9.8 CRITICAL	—
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curtime parameter to the goform/formEasySetupWWConfig component
CVE-2025-46108 ↗	Mar 4, 2026Wednesday, 4 March 2026, 21:16	9.8 CRITICAL	—
D-link Dir-513 A1FW110 is vulnerable to Buffer Overflow in the function formTcpipSetup.
CVE-2025-70219 ↗	Mar 4, 2026Wednesday, 4 March 2026, 20:16	9.8 CRITICAL	—
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the goform/formDeviceReboot.
CVE-2025-70226 ↗	Mar 4, 2026Wednesday, 4 March 2026, 19:16	9.8 CRITICAL	—
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formEasySetupWizard.
CVE-2025-70223 ↗	Mar 4, 2026Wednesday, 4 March 2026, 19:16	9.8 CRITICAL	—
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formAdvNetwork.
CVE-2025-70220 ↗	Mar 4, 2026Wednesday, 4 March 2026, 18:16	9.8 CRITICAL	—
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formAutoDetecWAN_wizard4.
CVE-2025-70218 ↗	Mar 4, 2026Wednesday, 4 March 2026, 18:16	9.8 CRITICAL	—
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via POST to the goform/formAdvFirewall component.
CVE-2025-70240 ↗	Mar 3, 2026Tuesday, 3 March 2026, 21:15	9.8 CRITICAL	—
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSetWAN_Wizard51.
CVE-2025-70239 ↗	Mar 3, 2026Tuesday, 3 March 2026, 21:15	9.8 CRITICAL	—
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSetWAN_Wizard55.
CVE-2025-70234 ↗	Mar 3, 2026Tuesday, 3 March 2026, 21:15	9.8 CRITICAL	—
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSetQoS.
CVE-2025-70241 ↗	Mar 3, 2026Tuesday, 3 March 2026, 20:16	9.8 CRITICAL	—
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSetWANType_Wizard5.
CVE-2025-70236 ↗	Mar 3, 2026Tuesday, 3 March 2026, 20:16	9.8 CRITICAL	—
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSetDomainFilter.
CVE-2025-70237 ↗	Mar 3, 2026Tuesday, 3 March 2026, 20:16	9.8 CRITICAL	—
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSetPortTr.
CVE-2026-24103 ↗	Mar 3, 2026Tuesday, 3 March 2026, 15:16	9.8 CRITICAL	—
A buffer overflow vulnerability was discovered in goform/formSetMacFilterCfg in Tenda AC15V1.0 V15.03.05.18_multi.
CVE-2026-24105 ↗	Mar 2, 2026Monday, 2 March 2026, 17:16	9.8 CRITICAL	—
An issue was discovered in goform/formsetUsbUnload in Tenda AC15V1.0 V15.03.05.18_multi. The value of `v1` was not checked, potentially leading to a command injection vulnerability if injected into doSystemCmd.
CVE-2025-70252 ↗	Mar 2, 2026Monday, 2 March 2026, 17:16	7.5 HIGH	—
An issue was discovered in /goform/WifiWpsStart in Tenda AC6V2.0 V15.03.06.23_multi. The index and mode are controllable. If the conditions are met to sprintf, they will be spliced into tmp. It is worth noting that there is no size check,which leads to a stack overflow vulnerability.
CVE-2026-24110 ↗	Mar 2, 2026Monday, 2 March 2026, 16:16	9.8 CRITICAL	—
An issue was discovered in Tenda W20E V4.0br_V15.11.0.6. Attackers may send overly long `addDhcpRules` data. When these rules enter the `addDhcpRule` function and are processed by `ret = sscanf(pRule, " %d\t%[^\t]\t%[^\n\r\t]", &dhcpsIndex, dhcpsIP, dhcpsMac);`, the lack of size validation for the rules could lead to buffer overflows in `dhcpsIndex`, `dhcpsIP`, and `dhcpsMac`.
CVE-2026-24101 ↗	Mar 2, 2026Monday, 2 March 2026, 16:16	9.8 CRITICAL	—
An issue was discovered in goform/formSetIptv in Tenda AC15V1.0 V15.03.05.18_multi. When the condition is met, `s1_1` will be passed into sub_B0488, concatenated into `doSystemCmd`. The value of s1_1 is not validated, potentially leading to a command injection vulnerability.
CVE-2026-24112 ↗	Mar 2, 2026Monday, 2 March 2026, 16:16	9.8 CRITICAL	—
An issue was discovered in Tenda W20E V4.0br_V15.11.0.6. Attackers may exploit the vulnerability by specifying the value of `userInfo`. When `userInfo` is passed into the `addWewifiWhiteUser` function and processed by `sscanf` without size validation, it could lead to a buffer overflow vulnerability.
CVE-2026-24107 ↗	Mar 2, 2026Monday, 2 March 2026, 15:16	9.8 CRITICAL	—
An issue was discovered in Tenda W20E V4.0br_V15.11.0.6. Failure to validate the value of `usbPartitionName`, which is directly used in `doSystemCmd`, may lead to critical command injection vulnerabilities.
CVE-2026-24108 ↗	Mar 2, 2026Monday, 2 March 2026, 15:16	9.8 CRITICAL	—
An issue was discovered in Tenda W20E V4.0br_V15.11.0.6. Attackers may exploit the vulnerability by controlling the value of `nptr`. When this value is passed into the `getMibPrefix` function and concatenated using `sprintf` without proper size validation, it could lead to a buffer overflow vulnerability.
CVE-2026-24109 ↗	Mar 2, 2026Monday, 2 March 2026, 15:16	9.8 CRITICAL	—
An issue was discovered in Tenda W20E V4.0br_V15.11.0.6. Attackers may exploit the vulnerability by controlling the value of `picName`. When this value is used in `sprintf` without validating variable sizes, it could lead to a buffer overflow vulnerability.
CVE-2026-24111 ↗	Mar 2, 2026Monday, 2 March 2026, 15:16	9.8 CRITICAL	—
An issue was discovered in Tenda W20E V4.0br_V15.11.0.6. Attackers may exploit the vulnerability by specifying the value of `userInfo`. When `userInfo` is passed into the `addAuthUser` function and processed by `sscanf` without size validation, it could lead to buffer overflow.
CVE-2026-24113 ↗	Mar 2, 2026Monday, 2 March 2026, 15:16	9.8 CRITICAL	—
An issue was discovered in Tenda W20E V4.0br_V15.11.0.6. Attackers may exploit the vulnerability by controlling the value of `nptr`. When this value is passed into the `getMibPrefix` function and concatenated using `sprintf` without proper size validation, it could lead to a buffer overflow vulnerability.
CVE-2026-24114 ↗	Mar 2, 2026Monday, 2 March 2026, 15:16	9.8 CRITICAL	—
An issue was discovered in Tenda W20E V4.0br_V15.11.0.6. Failure to validate `pPortMapIndex` may lead to buffer overflows when using `strcpy`.
CVE-2026-24115 ↗	Mar 2, 2026Monday, 2 March 2026, 15:16	9.8 CRITICAL	—
An issue was discovered in Tenda W20E V4.0br_V15.11.0.6. Failure to validate the sizes of `gstup` and `gstdwn` before concatenating them into `gstruleQos` may lead to buffer overflow.