CWE-787
High likelihoodOut-of-bounds Write
The product writes data past the end, or before the beginning, of the intended buffer.
14,237 vulnerabilities with CWE-787
CVE-2023-37707
CRITICAL
Tenda FH1203 V2.0.1.6 - Stack Overflow via fromVirtualSer Page Parameter
CVSS 9.8
CVE-2023-37706
CRITICAL
Tenda FH1203 V2.0.1.6 - Stack Overflow via fromAddressNat Entrys Parameter
CVSS 9.8
CVE-2023-37705
CRITICAL
Tenda FH1203 V2.0.1.6 - Stack Overflow via Page Parameter in fromAddressNat Function
CVSS 9.8
CVE-2023-37704
CRITICAL
Tenda FH1203 V2.0.1.6 - Stack Overflow via formSetClientState deviceId Parameter
CVSS 9.8
CVE-2023-37703
CRITICAL
Tenda FH1203 V2.0.1.6 - Stack Overflow via formSetSpeedWan speed_dir Parameter
CVSS 9.8
CVE-2023-37702
CRITICAL
Tenda FH1203 V2.0.1.6 - Stack Overflow via deviceId Parameter in formSetDeviceName
CVSS 9.8
CVE-2023-37701
CRITICAL
Tenda FH1203 V2.0.1.6 - Stack Overflow via deviceId Parameter in addWifiMacFilter
CVSS 9.8
CVE-2023-37700
CRITICAL
Tenda FH1203 V2.0.1.6 - Stack Overflow via SSID Parameter in form_fast_setting_wifi_set
CVSS 9.8
CVE-2023-1901
MEDIUM
Zephyr < 3.3.0 - Use-After-Free in Bluetooth HCI Host Layer
CVSS 5.9
CVE-2023-25124
HIGH
Milesight UR32L v32.3.0.5 - Authenticated Stack-based Buffer Overflow in vtysh_ubus set_openvpn_client
CVSS 7.2
CVE-2023-25123
HIGH
Milesight UR32L v32.3.0.5 - Authenticated Stack-based Buffer Overflow in vtysh_ubus set_openvpn_client
CVSS 7.2
CVE-2023-25122
HIGH
Milesight UR32L v32.3.0.5 - Authenticated Stack-based Buffer Overflow via vtysh_ubus HTTP Request
CVSS 7.2
CVE-2023-25121
HIGH
Milesight UR32L v32.3.0.5 - Authenticated Stack-based Buffer Overflow via vtysh_ubus set_ike_profile Function
CVSS 7.2
CVE-2023-25120
HIGH
Milesight UR32L v32.3.0.5 - Authenticated Stack-based Buffer Overflow via vtysh_ubus set_dmvpn Function
CVSS 7.2
CVE-2023-25119
HIGH
Milesight UR32L v32.3.0.5 - Authenticated Stack-based Buffer Overflow in vtysh_ubus set_pptp Function
CVSS 7.2
CVE-2023-25118
HIGH
Milesight UR32L v32.3.0.5 - Authenticated Stack-based Buffer Overflow in vtysh_ubus set_openvpn_client
CVSS 7.2
CVE-2023-25117
HIGH
Milesight UR32L v32.3.0.5 - Authenticated Stack-based Buffer Overflow via vtysh_ubus set_openvpn_client
CVSS 7.2
CVE-2023-25116
HIGH
Milesight UR32L v32.3.0.5 - Authenticated Stack-based Buffer Overflow via vtysh_ubus set_openvpn_client
CVSS 7.2
CVE-2023-25115
HIGH
Milesight UR32L v32.3.0.5 - Authenticated Stack-based Buffer Overflow in vtysh_ubus set_openvpn_client
CVSS 7.2
CVE-2023-25114
HIGH
Milesight UR32L v32.3.0.5 - Authenticated Stack-based Buffer Overflow via vtysh_ubus set_openvpn_client
CVSS 7.2
CVE-2023-25113
HIGH
Milesight UR32L v32.3.0.5 - Authenticated Stack-based Buffer Overflow via vtysh_ubus set_l2tp key
CVSS 7.2
CVE-2023-25112
HIGH
Milesight UR32L v32.3.0.5 - Authenticated Stack-based Buffer Overflow via vtysh_ubus set_l2tp Function
CVSS 7.2
CVE-2023-25111
HIGH
Milesight UR32L v32.3.0.5 - Authenticated Stack-based Buffer Overflow in set_gre Function
CVSS 7.2
CVE-2023-25110
HIGH
Milesight UR32L v32.3.0.5 - Authenticated Stack-based Buffer Overflow in set_gre Function
CVSS 7.2
CVE-2023-25109
HIGH
Milesight UR32L v32.3.0.5 - Authenticated Stack-based Buffer Overflow via vtysh_ubus set_gre Function
CVSS 7.2
Details
Vulnerabilities
14,237
Exploit Likelihood
High