Yhryhryhr_Miemie

**Name of the Vulnerable Software and Affected Versions** Edimax EW-7438RPn version 1.28a **Description** A command injection issue exists in the POST Request Handler component. The `formHwSet()` function within the '/goform/formHwSet' endpoint is susceptible to this flaw. A remote attacker can trigger this by manipulating several arguments, including `Anntena`, `Mcs`, `regDomain`, `nic0Addr`, `nic1Addr`, `wlanAddr`, `wanAddr`, `wlanSSID`, `wlanChan`, `comd`, `initgain`, `txcck`, and `txofdm`. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Edimax BR-6675nD version 1.12 **Description** A command injection flaw exists in the POST Request Handler component. A remote attacker can exploit this by manipulating the `pinCode` argument within the `formWpsStart()` function, located in the '/goform/formWpsStart' endpoint. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Edimax EW-7438RPn version 1.28a **Description** A buffer overflow can be triggered remotely via the POST Request Handler component. The issue exists in the `formwlencrypt24g()` function within the '/goform/formwlencrypt24g' endpoint when manipulating the `key1` argument. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Edimax BR-6675nD version 1.12 **Description** A flaw in the POST Request Handler component allows remote command injection. The issue exists within the `formHwSet()` function located in the '/goform/formHwSet' endpoint. This occurs when manipulating the `regDomain`, `ABandregDomain`, `nic0Addr`, `nic1Addr`, `wlanAddr`, or `inicAddr` arguments. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Edimax EW-7438RPn version 1.12 **Description** Command injection is possible via the POST Request Handler component. Specifically, manipulating the `method` argument within the `formEZCHNwlanSetup()` function of the '/goform/formEZCHNwlanSetu' file allows for remote exploitation. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Edimax EW-7438RPn version 1.12 **Description** A command injection issue exists in the Setting Handler component. Remote attackers can exploit this by manipulating the `max Conn/timeOut` argument within the `formConnectionSetting()` function of the '/goform/formConnectionSetting' endpoint. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Edimax EW-7438RPn version 1.12 **Description** A command injection flaw exists in the POST Request Handler component. A remote attacker can trigger this issue by manipulating the `submit-url` argument within the `formAccept()` function of the '/goform/formAccep' endpoint. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Totolink LR350 version 9.3.5u.6369 B20220309 **Description** A flaw exists in the `setWiFiEasyCfg()` function within the `/cgi-bin/cstecgi.cgi` file of the software. This issue stems from a buffer overflow that occurs when processing the `ssid` parameter. Successful exploitation of this flaw by a remote attacker could lead to a denial-of-service condition. The exploit is publicly available. **Recommendations** Totolink LR350 version 9.3.5u.6369 B20220309: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tenda AC23 version 16.03.07.52 **Description** A flaw exists in Tenda AC23 version 16.03.07.52 that allows for remote stack-based buffer overflow. The issue is located within the `fromSetIpMacBind` function in the `/goform/SetIpMacBind` file. Manipulation of the `bindnum` argument can trigger the overflow. The exploit is publicly available and may be used to compromise systems. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tenda AC10U versions 15.03.06.48 through 15.03.06.49 **Description** A buffer overflow issue exists in the `formSetPPTPUserList` function within the HTTP POST Request Handler component, specifically in the `/goform/setPptpUserList` file of the Tenda AC10U. The issue is triggered by manipulating the argument list, allowing for remote code execution. The vulnerability occurs due to insufficient input validation when processing the `list` parameter. The exploit for this issue has been publicly disclosed. **Recommendations** Versions 15.03.06.48 through 15.03.06.49 are affected. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tenda AC10U versions 15.03.06.48 through 15.03.06.49 **Description** A buffer overflow issue exists in the Tenda AC10U. The vulnerability is located in the `fromadvsetlanip` function within the `/goform/AdvSetLanip` file, specifically within the POST Request Parameter Handler component. Manipulation of the `lanMask` argument can trigger the buffer overflow, allowing for remote exploitation. The exploit for this issue has been publicly released. **Recommendations** Update to a newer version that contains a fix for this vulnerability. As a temporary workaround, consider restricting access to the `/goform/AdvSetLanip` file to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** TykoDev cherry-studio-TykoFork version 0.1 **Description** A flaw exists in the OAuth Server Discovery component of the software, specifically within the `redirectToAuthorization` function located in the file /.well-known/oauth-authorization-server. Manipulation of the `authorizationUrl` argument can lead to operating system command injection. This issue is remotely exploitable, and details of the exploit have been publicly disclosed. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tenda O3 version 1.0.0.10(2478) **Description** A flaw exists in the `SetValue`/`GetValue` function within the `/goform/setDhcpConfig` file of the Tenda O3 router. Manipulation of the `dhcpEn` argument can trigger a stack-based buffer overflow, potentially allowing for remote attacks. The exploit for this issue has been publicly disclosed. **Recommendations** Update to a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** TOTOLINK A3300R version 17.0.0cu.557 B20221024 **Description** A weakness exists in TOTOLINK A3300R. The issue is related to a buffer overflow in the `setDdnsCfg` function within the `/cgi-bin/cstecgi.cgi` file. This can be exploited remotely. The exploit has been made publicly available. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tenda AC7 version 15.03.06.44 **Description** A stack-based buffer overflow can occur due to manipulation of the `Password` argument within the `/goform/fast setting pppoe set` file. This issue allows for remote exploitation. The exploit has been publicly disclosed. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tenda AC18 version 15.03.05.19(6318) **Description** A security issue exists in Tenda AC18 routers. A stack-based buffer overflow can occur due to manipulation of the `Username` argument within the /goform/fast setting pppoe set file. This issue is remotely exploitable. A public exploit is available, potentially allowing for remote code execution. **Recommendations** Update to a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tenda AC18 version 15.03.05.19 **Description** A flaw exists in Tenda AC18 version 15.03.05.19. The issue involves a stack-based buffer overflow in an unknown function of the file `/goform/saveAutoQos`. The `enable` argument can be manipulated to trigger this overflow. This manipulation can be initiated remotely. An exploit for this issue has been published. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tenda AC15 version 15.03.05.18 **Description** A flaw exists in Tenda AC15 version 15.03.05.18 that allows remote attackers to trigger a stack-based buffer overflow. The issue is related to the manipulation of the `newVersion` argument within the `/goform/setNotUpgrade` file. The exploit is publicly available. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tenda FH1202 version 1.2.0.14 **Description** A critical issue was found in the function `fromVirtualSer` of the file `/goform/VirtualSer`. The manipulation of the argument page leads to a stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. **Recommendations** For Tenda FH1202 version 1.2.0.14, as a temporary workaround, consider disabling the `fromVirtualSer` function until a patch is available. Restrict access to the `/goform/VirtualSer` file to minimize the risk of exploitation. Avoid using the argument page in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tenda AC5 version 15.03.06.47 **Description** A critical issue was found, classified as critical, affecting the function `formSetRebootTimer` of the file `/goform/SetRebootTimer`. The manipulation of the argument `rebootTime` leads to a stack-based buffer overflow. This issue can be exploited remotely. **Recommendations** For Tenda AC5 version 15.03.06.47, as a temporary workaround, consider disabling the `formSetRebootTimer` function until a patch is available. Restrict access to the `/goform/SetRebootTimer` endpoint to minimize the risk of exploitation. Avoid using the `rebootTime` argument in the affected endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.