Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In July 2024
CVE-2024-41459
Tenda FH1201 v1.2.0.14 was discovered to contain a stack-based buffer overflow vulnerability via the PPPOEPassword parameter at ip/goform/QuickIndex.
CVSS Score
9.8
EPSS Score
0.005
Published
2024-07-24
CVE-2024-41460
Tenda FH1201 v1.2.0.14 was discovered to contain a stack-based buffer overflow vulnerability via the entrys parameter at ip/goform/RouteStatic.
CVSS Score
9.8
EPSS Score
0.003
Published
2024-07-24
CVE-2024-41461
Tenda FH1201 v1.2.0.14 was discovered to contain a stack-based buffer overflow vulnerability via the list1 parameter at ip/goform/DhcpListClient.
CVSS Score
9.8
EPSS Score
0.005
Published
2024-07-24
CVE-2024-41462
Tenda FH1201 v1.2.0.14 was discovered to contain a stack-based buffer overflow vulnerability via the page parameter at ip/goform/DhcpListClient.
CVSS Score
7.5
EPSS Score
0.002
Published
2024-07-24
CVE-2024-41463
Tenda FH1201 v1.2.0.14 was discovered to contain a stack-based buffer overflow vulnerability via the entrys parameter at ip/goform/addressNat.
CVSS Score
7.5
EPSS Score
0.002
Published
2024-07-24
CVE-2024-41464
Tenda FH1201 v1.2.0.14 was discovered to contain a stack-based buffer overflow vulnerability via the mitInterface parameter in ip/goform/RouteStatic
CVSS Score
7.5
EPSS Score
0.003
Published
2024-07-24
CVE-2024-41465
Tenda FH1201 v1.2.0.14 was discovered to contain a stack-based buffer overflow vulnerability via the funcpara1 parameter at ip/goform/setcfm.
CVSS Score
7.5
EPSS Score
0.003
Published
2024-07-24
CVE-2024-41466
Tenda FH1201 v1.2.0.14 was discovered to contain a stack-based buffer overflow vulnerability via the page parameter at ip/goform/NatStaticSetting.
CVSS Score
7.5
EPSS Score
0.003
Published
2024-07-24
CVE-2024-7081
A vulnerability was found in itsourcecode Tailoring Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file expcatadd.php. The manipulation of the argument id/title leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
CVSS Score
6.3
EPSS Score
0.001
Published
2024-07-24
CVE-2024-41136
An authenticated command injection vulnerability exists in the HPE Aruba Networking EdgeConnect SD-WAN gateways Command Line Interface. Successful exploitation of this vulnerability results in the ability to execute arbitrary commands as a privileged user on the underlying operating system.
CVSS Score
6.8
EPSS Score
0.003
Published
2024-07-24


Products
Pricing
Contact Us

Shodan ® - All rights reserved