CWE-787
High likelihoodOut-of-bounds Write
The product writes data past the end, or before the beginning, of the intended buffer.
14,258 vulnerabilities with CWE-787
CVE-2022-24094
HIGH
Adobe After Effects <22.2, 18.4.4 - RCE
CVSS 7.8
CVE-2022-25566
HIGH
Tenda AX1806 v1.0.0.1 - Denial of Service via saveParentControlInfo Time Parameter
CVSS 7.5
CVE-2022-25561
HIGH
Tenda AX12 v22.03.01.21 - Denial of Service via Stack Overflow in sub_42DE00
CVSS 7.5
CVE-2022-25560
HIGH
Tenda AX12 v22.03.01.21 - Stack Overflow via list Parameter
CVSS 7.5
CVE-2022-25558
HIGH
Tenda AX1806 v1.0.0.1 - Stack Overflow via ProvinceCode Parameter
CVSS 7.5
CVE-2022-25557
HIGH
Tenda AX1806 v1.0.0.1 - Denial of Service via Heap Overflow in saveParentControlInfo
CVSS 7.5
CVE-2022-25556
HIGH
Tenda AX12 v22.03.01.21 - Stack Overflow via list Parameter
CVSS 7.5
CVE-2022-25555
HIGH
Tenda AX1806 v1.0.0.1 - Stack Overflow via ntpServer Parameter
CVSS 7.5
CVE-2022-25554
HIGH
Tenda AX1806 v1.0.0.1 - Stack Overflow via deviceId Parameter
CVSS 7.5
CVE-2022-25553
HIGH
Tenda AX1806 v1.0.0.1 - Stack Overflow via formSetSysToolDDNS ddnsPwd Parameter
CVSS 7.5
CVE-2022-25552
HIGH
Tenda AX1806 v1.0.0.1 - Stack Overflow via form_fast_setting_wifi_set SSID Parameter
CVSS 7.5
CVE-2022-25551
HIGH
Tenda AX1806 v1.0.0.1 - Denial of Service via ddnsDomain Parameter
CVSS 7.5
CVE-2022-25550
HIGH
Tenda AX1806 v1.0.0.1 - Denial of Service via deviceName Parameter
CVSS 7.5
CVE-2022-25549
HIGH
Tenda AX1806 v1.0.0.1 - Stack Overflow via formSetSysToolDDNS ddnsEn Parameter
CVSS 7.5
CVE-2022-25548
HIGH
Tenda AX1806 v1.0.0.1 - Stack Overflow Denial of Service via fromSetSysTime serverName Parameter
CVSS 7.5
CVE-2022-25547
HIGH
Tenda AX1806 v1.0.0.1 - Stack Overflow Denial of Service via fromSetSysTime Time Parameter
CVSS 7.5
CVE-2022-25546
HIGH
Tenda AX1806 v1.0.0.1 - Denial of Service via ddnsUser Parameter
CVSS 7.5
CVE-2022-25234
HIGH
CX-Programmer < 9.77 - Out-of-bounds Write via Crafted CXP File
CVSS 7.8
CVE-2022-24995
CRITICAL
Tenda AX3 v16.03.12.10_CN - Stack Overflow in fromSetSysTime via Time Parameter
CVSS 9.8
CVE-2022-21124
HIGH
CX-Programmer < 9.77 - Out-of-bounds Write via Crafted CXP File
CVSS 7.8
CVE-2022-20059
MEDIUM
Preloader (usb) - Local Privilege Escalation
CVSS 6.6
CVE-2022-20058
MEDIUM
Preloader (usb) - Privilege Escalation
CVSS 6.6
CVE-2022-20056
MEDIUM
Preloader (usb) - Local Privilege Escalation
CVSS 6.6
CVE-2022-20055
MEDIUM
Preloader (usb) - Privilege Escalation
CVSS 6.8
CVE-2022-20048
HIGH
Video Decoder - Privilege Escalation
CVSS 7.8
Details
Vulnerabilities
14,258
Exploit Likelihood
High