255 matches found
CVE-2024-52779
DCME-320 =7.4.12.90, DCME-520 =9.25.5.11, DCME-320-L =9.3.5.26, and DCME-720 =9.1.5.11 are vulnerable to Remote Code Execution via /function/audit/newstatistics/monstattop10.php...
CVE-2024-52781
DCME-320 =7.4.12.90, DCME-520 =9.25.5.11, DCME-320-L =9.3.5.26, and DCME-720 =9.1.5.11 are vulnerable to Remote Code Execution via /function/system/tool/traceroute.php...
CVE-2024-52780
DCME-320 =7.4.12.90, DCME-520 =9.25.5.11, DCME-320-L =9.3.5.26, and DCME-720 =9.1.5.11 are vulnerable to Remote Code Execution via /function/system/basic/mgmtedit.php...
CVE-2024-52782
DCME-320 =7.4.12.90, DCME-520 =9.25.5.11, DCME-320-L =9.3.5.26, and DCME-720 =9.1.5.11 are vulnerable to Remote Code Execution via /function/audit/newstatistics/monstathistnew.php...
Digital China Networks多款产品 安全漏洞
Digital China Networks DCME-520 DCN DCME-520 and others are products of Digital China Networks China.Digital China Networks DCME-520 is a new generation of high-performance security gateway with multi-core high performance. Digital China Networks DCME-320 DCN DCME-320 is a wireless router.Digital...
CVE-2024-52778
CVE-2024-52778 affects Digital China Networks DCME-320 (<=7.4.12.90), DCME-520 (<=9.25.5.11), DCME-320-L (<=9.3.5.26), and DCME-720 (7.4.12.90, DCME-520 >9.25.5.11, DCME-320-L >9.3.5.26, DCME-720 >9.1.5.11) and, as a temporary measure, restricting access to the vulnerable endpoi...
CVE-2024-52777
CVE-2024-52777 affects Digital China Networks DCME-320 (versions ≤7.4.12.90), DCME-520 (≤9.25.5.11), DCME-320-L (≤9.3.5.26), and DCME-720 (≤9.1.5.11). All listed variants are vulnerable to Remote Code Execution via the endpoint /function/system/basic/license_update.php. The connected sources (Red...
PT-2024-35435 · Dcme-320 +3 · Dcme-320 +3
Name of the Vulnerable Software and Affected Versions: DCME-320 versions 7.4.12.90 and earlier DCME-520 versions 9.25.5.11 and earlier DCME-320-L versions 9.3.5.26 and earlier DCME-720 versions 9.1.5.11 and earlier Description: The issue allows for Remote Code Execution via the...
Exploit for Improper Neutralization in Dlink Dns-320_Firmware
CVE-2024-10914 - D-Link Remote Code Execution RCE This repo...
Exploit for Improper Neutralization in Dlink Dns-320_Firmware
CVE-2024-10914 - D-Link Remote Code Execution RCE Exploit T...
Exploit for Improper Neutralization in Dlink Dns-320_Firmware
D-Link-NAS-CVE-2024-10914– This is a detection tool for D-Li...
The vulnerability of the cgi_user_add function in the file /cgi-bin/account_mgr.cgi?cmd=cgi_user_add of D-Link routers such as DNS-320, DNS-320LW, DNS-325, and DNS-340L allows a hacker to execute arbitrary code.
The vulnerability of the cgiuseradd function in the file /cgi-bin/accountmgr.cgi?cmd=cgiuseradd of D-Link routers such as DNS-320, DNS-320LW, DNS-325, and DNS-340L lies in the lack of measures to neutralize special elements. Exploiting this vulnerability allows a remote attacker to execute...
VulnCheck KEV: CVE-2024-10914
A vulnerability was found in D-Link DNS-320, DNS-320LW, DNS-325 and DNS-340L up to 20241028. It has been declared as critical. Affected by this vulnerability is the function cgiuseradd of the file /cgi-bin/accountmgr.cgi?cmd=cgiuseradd. The manipulation of the argument name leads to os...
Exploit for Improper Neutralization in Dlink Dns-320_Firmware
POC - CVE-2024–10914- Command Injection Vulnerability in name...
CVE-2024-10916 D-Link DNS-320/DNS-320LW/DNS-325/DNS-340L HTTP GET Request info.xml information disclosure
A vulnerability classified as problematic has been found in D-Link DNS-320, DNS-320LW, DNS-325 and DNS-340L up to 20241028. This affects an unknown part of the file /xml/info.xml of the component HTTP GET Request Handler. The manipulation leads to information disclosure. It is possible to initiat...
CVE-2024-10916 D-Link DNS-320/DNS-320LW/DNS-325/DNS-340L HTTP GET Request info.xml information disclosure
A vulnerability classified as problematic has been found in D-Link DNS-320, DNS-320LW, DNS-325 and DNS-340L up to 20241028. This affects an unknown part of the file /xml/info.xml of the component HTTP GET Request Handler. The manipulation leads to information disclosure. It is possible to initiat...
CVE-2024-10914
A vulnerability was found in D-Link DNS-320, DNS-320LW, DNS-325 and DNS-340L up to 20241028. It has been declared as critical. Affected by this vulnerability is the function cgiuseradd of the file /cgi-bin/accountmgr.cgi?cmd=cgiuseradd. The manipulation of the argument name leads to os command...
CVE-2024-10915
A vulnerability was found in D-Link DNS-320, DNS-320LW, DNS-325 and DNS-340L up to 20241028. It has been rated as critical. Affected by this issue is the function cgiuseradd of the file /cgi-bin/accountmgr.cgi?cmd=cgiuseradd. The manipulation of the argument group leads to os command injection. T...
CVE-2024-10915 D-Link DNS-320/DNS-320LW/DNS-325/DNS-340L account_mgr.cgi cgi_user_add os command injection
A vulnerability was found in D-Link DNS-320, DNS-320LW, DNS-325 and DNS-340L up to 20241028. It has been rated as critical. Affected by this issue is the function cgiuseradd of the file /cgi-bin/accountmgr.cgi?cmd=cgiuseradd. The manipulation of the argument group leads to os command injection. T...
CVE-2024-10915 D-Link DNS-320/DNS-320LW/DNS-325/DNS-340L account_mgr.cgi cgi_user_add os command injection
A vulnerability was found in D-Link DNS-320, DNS-320LW, DNS-325 and DNS-340L up to 20241028. It has been rated as critical. Affected by this issue is the function cgiuseradd of the file /cgi-bin/accountmgr.cgi?cmd=cgiuseradd. The manipulation of the argument group leads to os command injection. T...