cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-10750,https://securityvulnerability.io/vulnerability/CVE-2024-10750,Remote Vulnerability in Tenda i22 Could Lead to Null Pointer Dereference,A vulnerability has been found in Tenda i22 1.0.0.3(4687) and classified as problematic. Affected by this vulnerability is the function websReadEvent of the file /goform/GetIPTV?fgHPOST/goform/SysToo. The manipulation of the argument Content-Length leads to null pointer dereference. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.,Tenda,I22,6.5,MEDIUM,0.0012000000569969416,false,false,false,true,true,false,false,2024-11-04T01:00:07.611Z,0
CVE-2024-7584,https://securityvulnerability.io/vulnerability/CVE-2024-7584,Tenda i22 Buffer Overflow Vulnerability Ignored by Vendor,"A serious buffer overflow vulnerability has been identified in the Tenda i22 product, specifically within the formApPortalPhoneAuth function found in the /goform/apPortalPhoneAuth file. This issue allows for remote manipulation of the argument data, potentially enabling attackers to execute exploits from a distance. The vulnerability was publicly disclosed, emphasizing the necessity for users to apply immediate security measures. Despite early notifications to Tenda regarding this vulnerability, there has been no response, raising concerns about the timeliness of their security updates and the overall safety of their user base.",Tenda,I22 Firmware,9.8,CRITICAL,0.002940000034868717,false,false,false,false,,false,false,2024-08-07T17:15:00.000Z,0
CVE-2024-7585,https://securityvulnerability.io/vulnerability/CVE-2024-7585,Buffer Overflow Vulnerability in Tenda i22 Networking Device,"A serious buffer overflow vulnerability has been discovered in the Tenda i22 networking device, specifically in the formApPortalWebAuth function located at /goform/apPortalAuth. This vulnerability allows attackers to exploit the arguments webUserName and webUserPassword to manipulate memory allocation, leading to potential arbitrary code execution. The attack can be executed remotely, exposing users to significant risk. Despite early notification to Tenda regarding this security flaw, there has been no response from the vendor. It is crucial for users of the affected product to apply necessary mitigation measures to safeguard their devices.",Tenda,I22 Firmware,9.8,CRITICAL,0.002940000034868717,false,false,false,false,,false,false,2024-08-07T17:15:00.000Z,0
CVE-2024-7582,https://securityvulnerability.io/vulnerability/CVE-2024-7582,Buffer Overflow Vulnerability in Tenda i22 Router,"A critical buffer overflow vulnerability has been identified in the Tenda i22 router, specifically in the form processing function 'formApPortalAccessCodeAuth'. This vulnerability arises due to improper handling of the 'accessCode' parameter, allowing remote attackers to exploit the overflow condition by sending crafted requests. The affected version is Tenda i22 1.0.0.3(4687). Successful exploitation could lead to unauthorized access and potential complete control over the device. The vendor has been informed about the issue but has not responded or issued a patch, raising concerns for IoT security users.",Tenda,I22 Firmware,9.8,CRITICAL,0.002940000034868717,false,false,false,false,,false,false,2024-08-07T16:15:00.000Z,0
CVE-2024-7583,https://securityvulnerability.io/vulnerability/CVE-2024-7583,Vulnerability in Tenda i22 1.0.0.3(4687) Could Lead to Remote Buffer Overflow,"A buffer overflow vulnerability has been identified in the Tenda i22, specifically within the apPortalOneKeyAuth function. The flaw arises from improper handling of the argument data within the /goform/apPortalOneKeyAuth file, allowing attackers to exploit the vulnerability remotely. If successfully exploited, this can lead to potential unauthorized manipulation or access to the device. Despite efforts to notify the vendor regarding this serious issue, there has been no response, heightening the urgency for affected users to seek immediate remediation.",Tenda,I22 Firmware,9.8,CRITICAL,0.002940000034868717,false,false,false,false,,false,false,2024-08-07T16:15:00.000Z,0
CVE-2024-4252,https://securityvulnerability.io/vulnerability/CVE-2024-4252,Buffer Overflow Vulnerability in Tenda i22 Router,"A serious stack-based buffer overflow vulnerability has been identified in the Tenda i22 router's formSetUrlFilterRule function. This vulnerability allows remote attackers to manipulate the groupIndex argument, potentially leading to system instability or malicious code execution. Users of the affected version, 1.0.0.3(4687), are urged to implement appropriate security measures and monitor for any suspicious activities. Despite early contact with Tenda regarding this vulnerability, the vendor has not provided a response or patch, highlighting the need for immediate user action. For detailed indicators of compromise and further technical insights, refer to the comprehensive resources linked below.",Tenda,I22,8.8,HIGH,0.00044999999227002263,false,false,false,false,,false,false,2024-04-27T13:31:04.906Z,0
CVE-2022-45666,https://securityvulnerability.io/vulnerability/CVE-2022-45666,,Tenda i22 V1.0.0.3(4687) was discovered to contain a buffer overflow via the list parameter in the formwrlSSIDset function.,Tenda,I22 Firmware,7.5,HIGH,0.0005699999746866524,false,false,false,false,,false,false,2022-12-20T00:00:00.000Z,0
CVE-2022-45665,https://securityvulnerability.io/vulnerability/CVE-2022-45665,,Tenda i22 V1.0.0.3(4687) was discovered to contain a buffer overflow via the funcpara1 parameter in the formSetCfm function.,Tenda,I22 Firmware,7.5,HIGH,0.0005699999746866524,false,false,false,false,,false,false,2022-12-20T00:00:00.000Z,0
CVE-2022-45667,https://securityvulnerability.io/vulnerability/CVE-2022-45667,,Tenda i22 V1.0.0.3(4687) is vulnerable to Cross Site Request Forgery (CSRF) via function fromSysToolRestoreSet.,Tenda,I22 Firmware,6.5,MEDIUM,0.0006799999973736703,false,false,false,false,,false,false,2022-12-02T00:00:00.000Z,0
CVE-2022-45664,https://securityvulnerability.io/vulnerability/CVE-2022-45664,,Tenda i22 V1.0.0.3(4687) was discovered to contain a buffer overflow via the list parameter in the formwrlSSIDget function.,Tenda,I22 Firmware,7.5,HIGH,0.0005699999746866524,false,false,false,false,,false,false,2022-12-02T00:00:00.000Z,0
CVE-2022-45668,https://securityvulnerability.io/vulnerability/CVE-2022-45668,,Tenda i22 V1.0.0.3(4687) is vulnerable to Cross Site Request Forgery (CSRF) via function fromSysToolReboot.,Tenda,I22 Firmware,6.5,MEDIUM,0.0006799999973736703,false,false,false,false,,false,false,2022-12-02T00:00:00.000Z,0
CVE-2022-45672,https://securityvulnerability.io/vulnerability/CVE-2022-45672,,Tenda i22 V1.0.0.3(4687) was discovered to contain a buffer overflow via the formWx3AuthorizeSet function.,Tenda,I22 Firmware,7.5,HIGH,0.0005699999746866524,false,false,false,false,,false,false,2022-12-02T00:00:00.000Z,0
CVE-2022-45670,https://securityvulnerability.io/vulnerability/CVE-2022-45670,,Tenda i22 V1.0.0.3(4687) was discovered to contain a buffer overflow via the ping1 parameter in the formSetAutoPing function.,Tenda,I22 Firmware,7.5,HIGH,0.0005699999746866524,false,false,false,false,,false,false,2022-12-02T00:00:00.000Z,0
CVE-2022-45671,https://securityvulnerability.io/vulnerability/CVE-2022-45671,,Tenda i22 V1.0.0.3(4687) was discovered to contain a buffer overflow via the appData parameter in the formSetAppFilterRule function.,Tenda,I22 Firmware,7.5,HIGH,0.0005699999746866524,false,false,false,false,,false,false,2022-12-02T00:00:00.000Z,0
CVE-2022-45663,https://securityvulnerability.io/vulnerability/CVE-2022-45663,,Tenda i22 V1.0.0.3(4687) was discovered to contain a buffer overflow via the index parameter in the formWifiMacFilterSet function.,Tenda,I22 Firmware,7.5,HIGH,0.0005699999746866524,false,false,false,false,,false,false,2022-12-02T00:00:00.000Z,0
CVE-2022-45669,https://securityvulnerability.io/vulnerability/CVE-2022-45669,,Tenda i22 V1.0.0.3(4687) was discovered to contain a buffer overflow via the index parameter in the formWifiMacFilterGet function.,Tenda,I22 Firmware,7.5,HIGH,0.0005699999746866524,false,false,false,false,,false,false,2022-12-02T00:00:00.000Z,0