Security Vulnerabilities - CVEs Published In March 2024
Tenda FH1203 v2.0.1.6 has a stack overflow vulnerability in the list1 parameter of the fromDhcpListClient function.
CVSS Score
7.5
EPSS Score
0.001
Published
2024-03-28
Tenda AC10U v15.03.06.48 has a stack overflow vulnerability in the deviceId, limitSpeed, limitSpeedUp parameter from formSetClientState function.
CVSS Score
8.1
EPSS Score
0.002
Published
2024-03-28
In JetBrains TeamCity before 2024.03 authenticated users without administrative permissions could register other users when self-registration was disabled
CVSS Score
6.5
EPSS Score
0.0
Published
2024-03-28
An administrative user of WebReports may perform a Server Side Request Forgery (SSRF) exploit through SMTP configuration options.
CVSS Score
3.5
EPSS Score
0.002
Published
2024-03-28
An administrative user of WebReports may perform a Cross Site Scripting (XSS) and/or Man in the Middle (MITM) exploit through SAML configuration.
CVSS Score
2.0
EPSS Score
0.005
Published
2024-03-28
The console may experience a service interruption when processing file names with invalid characters.
CVSS Score
3.5
EPSS Score
0.002
Published
2024-03-28
Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the security parameter of the formWifiBasicSet function.
CVSS Score
9.8
EPSS Score
0.003
Published
2024-03-28
Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the deviceId parameter of the saveParentControlInfo function.
CVSS Score
6.5
EPSS Score
0.001
Published
2024-03-28
Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the security_5g parameter of the formWifiBasicSet function.
CVSS Score
6.5
EPSS Score
0.001
Published
2024-03-28
Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the urls parameter of the saveParentControlInfo function.
CVSS Score
9.8
EPSS Score
0.003
Published
2024-03-28