whiter6666/CVE

Releases0

Stars11

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2022-38831 ↗	Sep 16, 2022Friday, 16 September 2022, 15:15	9.8 CRITICAL	—
Tenda RX9_Pro V22.03.02.10 is vulnerable to Buffer Overflow via httpd/SetNetControlList
CVE-2022-38830 ↗	Sep 16, 2022Friday, 16 September 2022, 15:15	9.8 CRITICAL	—
Tenda RX9_Pro V22.03.02.10 is vulnerable to Buffer Overflow via httpd/setIPv6Status.
CVE-2022-38829 ↗	Sep 16, 2022Friday, 16 September 2022, 15:15	9.8 CRITICAL	—
Tenda RX9_Pro V22.03.02.10 is vulnerable to Buffer Overflow via httpd/setMacFilterCfg.
CVE-2022-38828 ↗	Sep 16, 2022Friday, 16 September 2022, 15:15	9.8 CRITICAL	—
TOTOLINK T6 V4.1.5cu.709_B20210518 is vulnerable to command injection via cstecgi.cgi
CVE-2022-38823 ↗	Sep 16, 2022Friday, 16 September 2022, 15:15	9.8 CRITICAL	—
In TOTOLINK T6 V4.1.5cu.709_B20210518, there is a hard coded password for root in /etc/shadow.sample.
CVE-2022-38827 ↗	Sep 16, 2022Friday, 16 September 2022, 15:15	9.8 CRITICAL	—
TOTOLINK T6 V4.1.5cu.709_B20210518 is vulnerable to Buffer Overflow via cstecgi.cgi
CVE-2022-38826 ↗	Sep 16, 2022Friday, 16 September 2022, 15:15	9.8 CRITICAL	—
In TOTOLINK T6 V4.1.5cu.709_B20210518, there is an execute arbitrary command in cstecgi.cgi.
CVE-2022-36613 ↗	Aug 29, 2022Monday, 29 August 2022, 00:15	7.8 HIGH	—
TOTOLINK N600R V4.3.0cu.7647_B20210106 was discovered to contain a hardcoded password for root at /etc/shadow.sample.
CVE-2022-38510 ↗	Aug 29, 2022Monday, 29 August 2022, 00:15	7.8 HIGH	—
Tenda_TX9pro V22.03.02.10 was discovered to contain a buffer overflow via the component httpd/SetNetControlList.
CVE-2022-38511 ↗	Aug 29, 2022Monday, 29 August 2022, 00:15	7.8 HIGH	—
TOTOLINK A810R V5.9c.4050_B20190424 was discovered to contain a command injection vulnerability via the component downloadFile.cgi.
CVE-2022-36616 ↗	Aug 29, 2022Monday, 29 August 2022, 00:15	7.8 HIGH	—
TOTOLINK A810R V4.1.2cu.5182_B20201026 and V5.9c.4050_B20190424 was discovered to contain a hardcoded password for root at /etc/shadow.sample.
CVE-2022-36615 ↗	Aug 29, 2022Monday, 29 August 2022, 00:15	7.8 HIGH	—
TOTOLINK A3000RU V4.1.2cu.5185_B20201128 was discovered to contain a hardcoded password for root at /etc/shadow.sample.
CVE-2022-36614 ↗	Aug 29, 2022Monday, 29 August 2022, 00:15	7.8 HIGH	—
TOTOLINK A860R V4.1.2cu.5182_B20201027 was discovered to contain a hardcoded password for root at /etc/shadow.sample.
CVE-2022-36612 ↗	Aug 29, 2022Monday, 29 August 2022, 00:15	7.8 HIGH	—
TOTOLINK A950RG V4.1.2cu.5204_B20210112 was discovered to contain a hardcoded password for root at /etc/shadow.sample.
CVE-2022-36611 ↗	Aug 29, 2022Monday, 29 August 2022, 00:15	7.8 HIGH	—
TOTOLINK A800R V4.1.2cu.5137_B20200730 was discovered to contain a hardcoded password for root at /etc/shadow.sample.
CVE-2022-36610 ↗	Aug 29, 2022Monday, 29 August 2022, 00:15	7.8 HIGH	—
TOTOLINK A720R V4.1.5cu.532_B20210610 was discovered to contain a hardcoded password for root at /etc/shadow.sample.
CVE-2022-32058 ↗	Jul 7, 2022Thursday, 7 July 2022, 19:15	7.5 HIGH	7.8 HIGH
An infinite loop in the function httpRpmPass of TP-Link TL-WR741N/TL-WR742N V1/V2/V3_130415 allows attackers to cause a Denial of Service (DoS) via a crafted packet.