Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2022-32033PUBLISHED: 2022-07-01Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow via the function formSetVirtualSer.
CVE-2022-32034PUBLISHED: 2022-07-01Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the items parameter in the function formdelMasteraclist.
CVE-2022-32035PUBLISHED: 2022-07-01Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the function formMasterMng.
CVE-2022-32036PUBLISHED: 2022-07-01Tenda M3 V1.0.0.12 was discovered to contain multiple stack overflow vulnerabilities via the ssidList, storeName, and trademark parameters in the function formSetStoreWeb.
CVE-2022-32037PUBLISHED: 2022-07-01Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the function formSetAPCfg.
User Rank: Ninja
12/22/2014 | 9:38:50 AM
In my opinion this event, because it involves North Korea, we should be looking at our privately owned (national) infrastructure of public utilities, water, electric... other power generation and banking. It's been proved many times over that some of these critical systems are open to the Internet, if not vulnerable to a dedicated script-kiddy. We (the US) invented STUXNET... Duqu... Flame and possibly others that we haven't heard about (yet). I don't know about you but there is no way that I can believe that America is the only "Nation State" with this capability, we're just the only ones whose been caught using it. We're wasting time.