Total
10481 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2021-36193 | 1 Fortinet | 1 Fortiweb | 2022-02-07 | 6.5 MEDIUM | 7.2 HIGH |
| Multiple stack-based buffer overflows in the command line interpreter of FortiWeb before 6.4.2 may allow an authenticated attacker to achieve arbitrary code execution via specially crafted commands. | |||||
| CVE-2022-24142 | 1 Tenda | 2 Ax3, Ax3 Firmware | 2022-02-07 | 7.8 HIGH | 7.5 HIGH |
| Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function formSetFirewallCfg. This vulnerability allows attackers to cause a Denial of Service (DoS) via the firewallEn parameter. | |||||
| CVE-2022-24145 | 1 Tenda | 2 Ax3, Ax3 Firmware | 2022-02-07 | 7.8 HIGH | 7.5 HIGH |
| Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function formWifiBasicSet. This vulnerability allows attackers to cause a Denial of Service (DoS) via the security and security_5g parameters. | |||||
| CVE-2022-24156 | 1 Tenda | 2 Ax3, Ax3 Firmware | 2022-02-07 | 7.8 HIGH | 7.5 HIGH |
| Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function formSetVirtualSer. This vulnerability allows attackers to cause a Denial of Service (DoS) via the list parameter. | |||||
| CVE-2022-24161 | 1 Tenda | 2 Ax3, Ax3 Firmware | 2022-02-07 | 7.8 HIGH | 7.5 HIGH |
| Tenda AX3 v16.03.12.10_CN was discovered to contain a heap overflow in the function GetParentControlInfo. This vulnerability allows attackers to cause a Denial of Service (DoS) via the mac parameter. | |||||
| CVE-2022-24162 | 1 Tenda | 2 Ax3, Ax3 Firmware | 2022-02-07 | 7.8 HIGH | 7.5 HIGH |
| Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function saveParentControlInfo. This vulnerability allows attackers to cause a Denial of Service (DoS) via the time parameter. | |||||
| CVE-2009-2950 | 3 Apache, Canonical, Debian | 3 Openoffice, Ubuntu Linux, Debian Linux | 2022-02-07 | 9.3 HIGH | N/A |
| Heap-based buffer overflow in the GIFLZWDecompressor::GIFLZWDecompressor function in filter.vcl/lgif/decode.cxx in OpenOffice.org (OOo) before 3.2 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted GIF file, related to LZW decompression. | |||||
| CVE-2022-24163 | 1 Tenda | 2 Ax3, Ax3 Firmware | 2022-02-07 | 7.8 HIGH | 7.5 HIGH |
| Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function fromSetSysTime. This vulnerability allows attackers to cause a Denial of Service (DoS) via the timeZone parameter. | |||||
| CVE-2022-24158 | 1 Tenda | 2 Ax3, Ax3 Firmware | 2022-02-07 | 7.8 HIGH | 7.5 HIGH |
| Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function fromSetIpMacBind. This vulnerability allows attackers to cause a Denial of Service (DoS) via the list parameter. | |||||
| CVE-2022-24159 | 1 Tenda | 2 Ax3, Ax3 Firmware | 2022-02-07 | 7.8 HIGH | 7.5 HIGH |
| Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function formSetPPTPServer. This vulnerability allows attackers to cause a Denial of Service (DoS) via the startIp and endIp parameters. | |||||
| CVE-2022-24160 | 1 Tenda | 2 Ax3, Ax3 Firmware | 2022-02-07 | 7.8 HIGH | 7.5 HIGH |
| Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function formSetDeviceName. This vulnerability allows attackers to cause a Denial of Service (DoS) via the devName parameter. | |||||
| CVE-2022-24146 | 1 Tenda | 2 Ax3, Ax3 Firmware | 2022-02-07 | 7.8 HIGH | 7.5 HIGH |
| Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function formSetQosBand. This vulnerability allows attackers to cause a Denial of Service (DoS) via the list parameter. | |||||
| CVE-2015-1774 | 6 Apache, Canonical, Debian and 3 more | 8 Openoffice, Ubuntu Linux, Debian Linux and 5 more | 2022-02-07 | 6.8 MEDIUM | N/A |
| The HWP filter in LibreOffice before 4.3.7 and 4.4.x before 4.4.2 and Apache OpenOffice before 4.1.2 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted HWP document, which triggers an out-of-bounds write. | |||||
| CVE-2017-9806 | 1 Apache | 1 Openoffice | 2022-02-07 | 6.8 MEDIUM | 7.8 HIGH |
| A vulnerability in the OpenOffice Writer DOC file parser before 4.1.4, and specifically in the WW8Fonts Constructor, allows attackers to craft malicious documents that cause denial of service (memory corruption and application crash) potentially resulting in arbitrary code execution. | |||||
| CVE-2017-12607 | 2 Apache, Debian | 2 Openoffice, Debian Linux | 2022-02-07 | 6.8 MEDIUM | 7.8 HIGH |
| A vulnerability in OpenOffice's PPT file parser before 4.1.4, and specifically in PPTStyleSheet, allows attackers to craft malicious documents that cause denial of service (memory corruption and application crash) potentially resulting in arbitrary code execution. | |||||
| CVE-2013-2189 | 1 Apache | 1 Openoffice | 2022-02-07 | 6.8 MEDIUM | N/A |
| Apache OpenOffice.org (OOo) before 4.0 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via invalid PLCF data in a DOC document file. | |||||
| CVE-2013-4156 | 1 Apache | 1 Openoffice | 2022-02-07 | 6.8 MEDIUM | N/A |
| Apache OpenOffice.org (OOo) before 4.0 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted element in an OOXML document file. | |||||
| CVE-2017-12608 | 2 Apache, Debian | 2 Openoffice, Debian Linux | 2022-02-07 | 6.8 MEDIUM | 7.8 HIGH |
| A vulnerability in Apache OpenOffice Writer DOC file parser before 4.1.4, and specifically in ImportOldFormatStyles, allows attackers to craft malicious documents that cause denial of service (memory corruption and application crash) potentially resulting in arbitrary code execution. | |||||
| CVE-2022-24154 | 1 Tenda | 2 Ax3, Ax3 Firmware | 2022-02-07 | 7.8 HIGH | 7.5 HIGH |
| Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function formSetRebootTimer. This vulnerability allows attackers to cause a Denial of Service (DoS) via the rebootTime parameter. | |||||
| CVE-2022-24155 | 1 Tenda | 2 Ax3, Ax3 Firmware | 2022-02-07 | 7.8 HIGH | 7.5 HIGH |
| Tenda AX3 v16.03.12.10_CN was discovered to contain a heap overflow in the function setSchedWifi. This vulnerability allows attackers to cause a Denial of Service (DoS) via the schedStartTime and schedEndTime parameters. | |||||