Vulnerabilities (CVE)

Filtered by CWE-787
Total 14072 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-44366 1 Tenda 2 I21, I21 Firmware 2026-06-17 N/A 9.8 CRITICAL
Tenda i21 V1.0.0.14(4656) is vulnerable to Buffer Overflow via /goform/setDiagnoseInfo.
CVE-2022-44365 1 Tenda 2 I21, I21 Firmware 2026-06-17 N/A 9.8 CRITICAL
Tenda i21 V1.0.0.14(4656) has a stack overflow vulnerability via /goform/setSysPwd.
CVE-2022-44363 1 Tenda 2 I21, I21 Firmware 2026-06-17 N/A 9.8 CRITICAL
Tenda i21 V1.0.0.14(4656) is vulnerable to Buffer Overflow via /goform/setSnmpInfo.
CVE-2022-44362 1 Tenda 2 I21, I21 Firmware 2026-06-17 N/A 9.8 CRITICAL
Tenda i21 V1.0.0.14(4656) is vulnerable to Buffer Overflow via /goform/AddSysLogRule.
CVE-2022-44321 1 Picoc Project 1 Picoc 2026-06-17 N/A 5.5 MEDIUM
PicoC Version 3.2.2 was discovered to contain a heap buffer overflow in the LexSkipComment function in lex.c when called from LexScanGetToken.
CVE-2022-44320 1 Picoc Project 1 Picoc 2026-06-17 N/A 5.5 MEDIUM
PicoC Version 3.2.2 was discovered to contain a heap buffer overflow in the ExpressionCoerceFP function in expression.c when called from ExpressionParseFunctionCall.
CVE-2022-44319 1 Picoc Project 1 Picoc 2026-06-17 N/A 5.5 MEDIUM
PicoC Version 3.2.2 was discovered to contain a heap buffer overflow in the StdioBasePrintf function in cstdlib/string.c when called from ExpressionParseFunctionCall.
CVE-2022-44318 1 Picoc Project 1 Picoc 2026-06-17 N/A 5.5 MEDIUM
PicoC Version 3.2.2 was discovered to contain a heap buffer overflow in the StringStrcat function in cstdlib/string.c when called from ExpressionParseFunctionCall.
CVE-2022-44317 1 Picoc Project 1 Picoc 2026-06-17 N/A 5.5 MEDIUM
PicoC Version 3.2.2 was discovered to contain a heap buffer overflow in the StdioOutPutc function in cstdlib/stdio.c when called from ExpressionParseFunctionCall.
CVE-2022-44316 1 Picoc Project 1 Picoc 2026-06-17 N/A 5.5 MEDIUM
PicoC Version 3.2.2 was discovered to contain a heap buffer overflow in the LexGetStringConstant function in lex.c when called from LexScanGetToken.
CVE-2022-44315 1 Picoc Project 1 Picoc 2026-06-17 N/A 5.5 MEDIUM
PicoC Version 3.2.2 was discovered to contain a heap buffer overflow in the ExpressionAssign function in expression.c when called from ExpressionParseFunctionCall.
CVE-2022-44314 1 Picoc Project 1 Picoc 2026-06-17 N/A 5.5 MEDIUM
PicoC Version 3.2.2 was discovered to contain a heap buffer overflow in the StringStrncpy function in cstdlib/string.c when called from ExpressionParseFunctionCall.
CVE-2022-44313 1 Picoc Project 1 Picoc 2026-06-17 N/A 5.5 MEDIUM
PicoC Version 3.2.2 was discovered to contain a heap buffer overflow in the ExpressionCoerceUnsignedInteger function in expression.c when called from ExpressionParseFunctionCall.
CVE-2022-44312 1 Picoc Project 1 Picoc 2026-06-17 N/A 5.5 MEDIUM
PicoC Version 3.2.2 was discovered to contain a heap buffer overflow in the ExpressionCoerceInteger function in expression.c when called from ExpressionInfixOperator.
CVE-2022-44260 1 Totolink 2 Lr350, Lr350 Firmware 2026-06-17 N/A 8.8 HIGH
TOTOLINK LR350 V9.3.5u.6369_B20220309 contains a post-authentication buffer overflow via parameter sPort/ePort in the setIpPortFilterRules function.
CVE-2022-44259 1 Totolink 2 Lr350, Lr350 Firmware 2026-06-17 N/A 8.8 HIGH
TOTOLINK LR350 V9.3.5u.6369_B20220309 contains a post-authentication buffer overflow via parameter week, sTime, and eTime in the setParentalRules function.
CVE-2022-44258 1 Totolink 2 Lr350, Lr350 Firmware 2026-06-17 N/A 8.8 HIGH
TOTOLINK LR350 V9.3.5u.6369_B20220309 contains a post-authentication buffer overflow via parameter command in the setTracerouteCfg function.
CVE-2022-44257 1 Totolink 2 Lr350, Lr350 Firmware 2026-06-17 N/A 8.8 HIGH
TOTOLINK LR350 V9.3.5u.6369_B20220309 contains a post-authentication buffer overflow via parameter pppoeUser in the setOpModeCfg function.
CVE-2022-44256 1 Totolink 2 Nr1800x, Nr1800x Firmware 2026-06-17 N/A 8.8 HIGH
TOTOLINK LR350 V9.3.5u.6369_B20220309 contains a post-authentication buffer overflow via parameter lang in the setLanguageCfg function.
CVE-2022-44255 1 Totolink 2 Lr350, Lr350 Firmware 2026-06-17 N/A 9.8 CRITICAL
TOTOLINK LR350 V9.3.5u.6369_B20220309 contains a pre-authentication buffer overflow in the main function via long post data.