Security Vulnerabilities - CVEs Published In May 2024
Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vulnerability via the funcpara1 parameter at ip/goform/exeCommand.
CVSS Score
8.8
EPSS Score
0.005
Published
2024-05-14
Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vulnerability via the page parameter at ip/goform/NatStaticSetting.
CVSS Score
9.8
EPSS Score
0.004
Published
2024-05-14
Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vulnerability via the list1 parameter at ip/goform/DhcpListClient.
CVSS Score
8.8
EPSS Score
0.003
Published
2024-05-14
Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vulnerability via the PPW parameter at ip/goform/WizardHandle.
CVSS Score
9.8
EPSS Score
0.004
Published
2024-05-14
Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vulnerability via the page parameter at ip/goform/DhcpListClient.
CVSS Score
6.5
EPSS Score
0.004
Published
2024-05-14
Tenda AC18 v15.03.05.19 is vulnerable to Buffer Overflow in the formSetPPTPServer function via the endIp parameter.
CVSS Score
8.2
EPSS Score
0.001
Published
2024-05-14
An issue in SurveyKing v1.3.1 allows attackers to execute a session replay attack after a user changes their password.
CVSS Score
4.3
EPSS Score
0.001
Published
2024-05-14
Cross-Site Request Forgery (CSRF) vulnerability in Andy Moyle Church Admin.This issue affects Church Admin: from n/a through 4.1.32.
CVSS Score
4.3
EPSS Score
0.001
Published
2024-05-14
WWBN AVideo 12.4 is vulnerable to Cross Site Scripting (XSS).
CVSS Score
5.4
EPSS Score
0.001
Published
2024-05-14
TOTOLINK X5000R v9.1.0cu.2350_B20230313 was discovered to contain a command injection via the disconnectVPN function.
CVSS Score
8.8
EPSS Score
0.018
Published
2024-05-14