Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In April 2024
CVE-2024-32315
Tenda FH1202 v1.2.0.14(408) firmware has a stack overflow vulnerability via the adslPwd parameter in the formWanParameterSetting function.
CVSS Score
4.7
EPSS Score
0.001
Published
2024-04-17
CVE-2024-31578
FFmpeg version n6.1.1 was discovered to contain a heap use-after-free via the av_hwframe_ctx_init function.
CVSS Score
7.5
EPSS Score
0.001
Published
2024-04-17
CVE-2024-32282
Tenda FH1202 v1.2.0.14(408) firmware contains a command injection vulnerablility in the formexeCommand function via the cmdinput parameter.
CVSS Score
6.3
EPSS Score
0.005
Published
2024-04-17
CVE-2024-32283
Tenda FH1203 V2.0.1.6 firmware has a command injection vulnerablility in formexeCommand function via the cmdinput parameter.
CVSS Score
7.3
EPSS Score
0.003
Published
2024-04-17
CVE-2024-32285
Tenda W30E v1.0 V1.0.1.25(633) firmware has a stack overflow vulnerability via the password parameter in the formaddUserName function.
CVSS Score
8.0
EPSS Score
0.001
Published
2024-04-17
CVE-2024-32286
Tenda W30E v1.0 V1.0.1.25(633) firmware has a stack overflow vulnerability located via the page parameter in the fromVirtualSer function.
CVSS Score
9.8
EPSS Score
0.002
Published
2024-04-17
CVE-2024-32287
Tenda W30E v1.0 V1.0.1.25(633) firmware has a stack overflow vulnerability via the qos parameter in the fromqossetting function.
CVSS Score
6.5
EPSS Score
0.001
Published
2024-04-17
CVE-2024-32288
Tenda W30E v1.0 V1.0.1.25(633) firmware has a stack overflow vulnerability located via the page parameter in the fromwebExcptypemanFilter function.
CVSS Score
6.3
EPSS Score
0.001
Published
2024-04-17
CVE-2024-32290
Tenda W30E v1.0 v1.0.1.25(633) firmware has a stack overflow vulnerability via the page parameter in the fromAddressNat function.
CVSS Score
6.7
EPSS Score
0.001
Published
2024-04-17
CVE-2024-1132
A flaw was found in Keycloak, where it does not properly validate URLs included in a redirect. This issue could allow an attacker to construct a malicious request to bypass validation and access other URLs and sensitive information within the domain or conduct further attacks. This flaw affects any client that utilizes a wildcard in the Valid Redirect URIs field, and requires user interaction within the malicious URL.
CVSS Score
8.1
EPSS Score
0.002
Published
2024-04-17


Products
Pricing
Contact Us

Shodan ® - All rights reserved