Vulnerabilities > Improper Restriction of Operations within the Bounds of a Memory Buffer

DATE CVE VULNERABILITY TITLE RISK
2023-09-27 CVE-2023-20251 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Cisco Mobility Express Software
A vulnerability in the memory buffer of Cisco Wireless LAN Controller (WLC) AireOS Software could allow an unauthenticated, adjacent attacker to cause memory leaks that could eventually lead to a device reboot. This vulnerability is due to memory leaks caused by multiple clients connecting under specific conditions.
high complexity
cisco CWE-119
5.3
5.3
2023-09-27 CVE-2023-44013 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Tendacn Ac10U Firmware 15.03.06.49Multitde01
Tenda AC10U v1.0 US_AC10UV1.0RTL_V15.03.06.49_multi_TDE01 was discovered to contain a stack overflow via the list parameter in the fromSetIpMacBind function.
network
low complexity
tendacn CWE-119
critical
 9.8
9.8
2023-09-27 CVE-2023-44014 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Tendacn Ac10U Firmware 15.03.06.49Multitde01
Tenda AC10U v1.0 US_AC10UV1.0RTL_V15.03.06.49_multi_TDE01 was discovered to contain multiple stack overflows in the formSetMacFilterCfg function via the macFilterType and deviceList parameters.
network
low complexity
tendacn CWE-119
critical
 9.8
9.8
2023-09-27 CVE-2023-44015 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Tendacn Ac10U Firmware 15.03.06.49Multitde01
Tenda AC10U v1.0 US_AC10UV1.0RTL_V15.03.06.49_multi_TDE01 was discovered to contain a stack overflow via the schedEndTime parameter in the setSchedWifi function.
network
low complexity
tendacn CWE-119
critical
 9.8
9.8
2023-09-27 CVE-2023-44016 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Tendacn Ac10U Firmware 15.03.06.49Multitde01
Tenda AC10U v1.0 US_AC10UV1.0RTL_V15.03.06.49_multi_TDE01 was discovered to contain a stack overflow via the deviceId parameter in the addWifiMacFilter function.
network
low complexity
tendacn CWE-119
critical
 9.8
9.8
2023-09-27 CVE-2023-44017 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Tendacn Ac10U Firmware 15.03.06.49Multitde01
Tenda AC10U v1.0 US_AC10UV1.0RTL_V15.03.06.49_multi_TDE01 was discovered to contain a stack overflow via the timeZone parameter in the fromSetSysTime function.
network
low complexity
tendacn CWE-119
critical
 9.8
9.8
2023-09-27 CVE-2023-44018 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Tendacn Ac10U Firmware 15.03.06.49Multitde01
Tenda AC10U v1.0 US_AC10UV1.0RTL_V15.03.06.49_multi_TDE01 was discovered to contain a stack overflow via the domain parameter in the add_white_node function.
network
low complexity
tendacn CWE-119
critical
 9.8
9.8
2023-09-27 CVE-2023-44019 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Tendacn Ac10U Firmware 15.03.06.49Multitde01
Tenda AC10U v1.0 US_AC10UV1.0RTL_V15.03.06.49_multi_TDE01 was discovered to contain a stack overflow via the mac parameter in the GetParentControlInfo function.
network
low complexity
tendacn CWE-119
critical
 9.8
9.8
2023-09-27 CVE-2023-44020 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Tendacn Ac10U Firmware 15.03.06.49Multitde01
Tenda AC10U v1.0 US_AC10UV1.0RTL_V15.03.06.49_multi_TDE01 was discovered to contain a stack overflow via the security parameter in the formWifiBasicSet function.
network
low complexity
tendacn CWE-119
critical
 9.8
9.8
2023-09-27 CVE-2023-44021 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Tendacn Ac10U Firmware 15.03.06.49Multitde01
Tenda AC10U v1.0 US_AC10UV1.0RTL_V15.03.06.49_multi_TDE01 was discovered to contain a stack overflow via the formSetClientState function.
network
low complexity
tendacn CWE-119
critical
 9.8
9.8