cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-12002,https://securityvulnerability.io/vulnerability/CVE-2024-12002,Remote Code Execution Vulnerability in Tenda Networking Products,"A high-risk vulnerability (CVE-2024-12002) has been identified in various Tenda networking products, including the FH451, FH1201, FH1202, and FH1206. This vulnerability occurs within the websReadEvent function located in the /goform/GetIPTV file. A remote attacker can manipulate the Content-Length argument, leading to a null pointer dereference condition. The vulnerability has been publicly disclosed, which implies that it could be actively exploited by cybercriminals. Users are strongly advised to update their devices to mitigate any risks associated with this flaw.",Tenda,"Fh451,Fh1201,Fh1202,Fh1206",6.5,MEDIUM,0.0012000000569969416,false,,false,false,true,2024-11-30T13:00:14.000Z,true,false,false,,2024-11-30T13:00:14.751Z,0
CVE-2024-46046,https://securityvulnerability.io/vulnerability/CVE-2024-46046,Stack Overflow Vulnerability in Tenda FH451 by Tenda Technology,"The Tenda FH451 v1.0.0.9 has been identified with a stack overflow vulnerability in its RouteStatic function. This vulnerability could potentially allow an attacker to exploit the system through crafted input, leading to unintended behavior or system compromise. Users of the affected version should take necessary precautions to mitigate risks associated with this issue.",Tenda,Fh451 Firmware,9.8,CRITICAL,0.0012100000167265534,false,,false,false,false,,,false,false,,2024-09-13T00:00:00.000Z,0
CVE-2024-46047,https://securityvulnerability.io/vulnerability/CVE-2024-46047,Stack Overflow Vulnerability in Tenda FH451 by Tenda Technology,"The Tenda FH451 v1.0.0.9 is susceptible to a stack overflow vulnerability in the fromDhcpListClient function. This weakness can allow attackers to manipulate memory and potentially execute arbitrary code, leading to unauthorized access and disruption of service. The vulnerability emphasizes the importance of implementing security measures and updates to protect against potential exploits.",Tenda,Fh451 Firmware,7.5,HIGH,0.0004600000102072954,false,,false,false,false,,,false,false,,2024-09-13T00:00:00.000Z,0
CVE-2024-46048,https://securityvulnerability.io/vulnerability/CVE-2024-46048,Command Injection Vulnerability in Tenda FH451 Router,"The Tenda FH451 v1.0.0.9 router has been found to contain a command injection vulnerability within its formexeCommand function. This security flaw could allow malicious actors to execute arbitrary commands on the affected system, thereby compromising the integrity and confidentiality of the device. Users of the Tenda FH451 router are advised to review their security measures and apply necessary updates to mitigate the risks associated with this vulnerability. Further information on this issue can be found in detailed documentation provided in community resources.",Tenda,Fh451 Firmware,9.8,CRITICAL,0.0017500000540167093,false,,false,false,false,,,false,false,,2024-09-13T00:00:00.000Z,0