Lucene search
+L

903 matches found

Vulnrichment
Vulnrichment
added 2024/05/07 10:54 p.m.16 views

CVE-2021-34983 NETGEAR Multiple Routers httpd Missing Authentication for Critical Function Information Disclosure Vulnerability

NETGEAR Multiple Routers httpd Missing Authentication for Critical Function Information Disclosure Vulnerability. This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of multiple NETGEAR routers. Authentication is not required to exploit...

6.5CVSS6.1AI score0.00326EPSS
Exploits0References2
CVE
CVE
added 2024/05/07 10:54 p.m.68 views

CVE-2021-34983

NETGEAR multiple routers are affected by a pre-authentication httpd limitation that allows network-adjacent attackers to disclose sensitive information and potentially stored credentials. Root cause: lack of authentication before access to system configuration via the httpd service (port 80). The...

6.5CVSS6.3AI score0.00326EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2024/05/07 10:54 p.m.84 views

CVE-2021-34982

The CVE-2021-34982 entry describes a pre-auth, remote code execution vulnerability in the httpd service of NETGEAR routers. The flaw is a stack-based buffer overflow caused by unchecked length of user-supplied data in the strings file, leading to code execution with root privileges when a network...

8.8CVSS9.1AI score0.00576EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2024/05/03 3:16 a.m.28 views

CVE-2023-51625

D-Link DCS-8300LHV2 ONVIF SetSystemDateAndTime Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DCS-8300LHV2 IP cameras. Although authentication is required to exploit this...

8CVSS8.4AI score0.01707EPSS
Exploits0References2
OSV
OSV
added 2024/05/03 3:16 a.m.6 views

CVE-2023-51619

D-Link DIR-X3260 prog.cgi SetMyDLinkRegistration Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-X3260 routers. Authentication is required to exploit this...

6.8CVSS6.3AI score0.01126EPSS
Exploits0References2
NVD
NVD
added 2024/05/03 3:16 a.m.34 views

CVE-2023-51621

D-Link DIR-X3260 prog.cgi SetDeviceSettings Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-X3260 routers. Authentication is required to exploit this...

6.8CVSS7.1AI score0.01126EPSS
Exploits0References2
NVD
NVD
added 2024/05/03 3:16 a.m.41 views

CVE-2023-51617

D-Link DIR-X3260 prog.cgi SetWanSettings Stack-Based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-X3260 routers. Authentication is required to exploit this vulnerability...

6.8CVSS7.1AI score0.01126EPSS
Exploits0References2
NVD
NVD
added 2024/05/03 3:16 a.m.18 views

CVE-2023-50224

TP-Link TL-WR841N dropbearpwd Improper Authentication Information Disclosure Vulnerability. This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of TP-Link TL-WR841N routers. Authentication is not required to exploit this vulnerability...

6.5CVSS6.1AI score0.1745EPSS
Exploits0References3
NVD
NVD
added 2024/05/03 3:16 a.m.24 views

CVE-2023-50216

D-Link G416 awsfile tar File Handling Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link G416 routers. Authentication is not required to exploit this vulnerability. The specific...

8.8CVSS9.2AI score0.00916EPSS
Exploits0References2
NVD
NVD
added 2024/05/03 3:16 a.m.24 views

CVE-2023-50217

D-Link G416 awsfile rm Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link G416 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists...

8.8CVSS9.2AI score0.00916EPSS
Exploits0References2
OSV
OSV
added 2024/05/03 3:16 a.m.5 views

CVE-2023-50214

D-Link G416 nodered tar File Handling Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link G416 routers. Authentication is not required to exploit this vulnerability. The specific...

8.8CVSS6.2AI score0.00946EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2024/05/03 3:16 a.m.1 views

CVE-2023-50216

D-Link G416 awsfile tar File Handling Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link G416 routers. Authentication is not required to exploit this vulnerability. The specific...

8.8CVSS7.7AI score0.00916EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2024/05/03 3:16 a.m.30 views

CVE-2023-50215

D-Link G416 nodered gz File Handling Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link G416 routers. Authentication is not required to exploit this vulnerability. The specific...

8.8CVSS9.2AI score0.00946EPSS
Exploits0References2
OSV
OSV
added 2024/05/03 3:16 a.m.5 views

CVE-2023-50212

D-Link G416 httpd Improper Handling of Exceptional Conditions Information Disclosure Vulnerability. This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of D-Link G416 routers. Authentication is not required to exploit this vulnerability...

6.5CVSS5.3AI score0.00514EPSS
Exploits0References2
NVD
NVD
added 2024/05/03 3:16 a.m.22 views

CVE-2023-50212

D-Link G416 httpd Improper Handling of Exceptional Conditions Information Disclosure Vulnerability. This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of D-Link G416 routers. Authentication is not required to exploit this vulnerability...

6.5CVSS4.3AI score0.00514EPSS
Exploits0References2
NVD
NVD
added 2024/05/03 3:16 a.m.17 views

CVE-2023-50211

D-Link G416 httpd API-AUTH Timestamp Processing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link G416 routers. Authentication is not required to exploit this...

8.8CVSS9.1AI score0.00637EPSS
Exploits0References2
NVD
NVD
added 2024/05/03 3:16 a.m.18 views

CVE-2023-50209

D-Link G416 cfgsave Stack-Based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link G416 wireless routers. Authentication is not required to exploit this vulnerability. The specific...

8.8CVSS9.1AI score0.00637EPSS
Exploits0References2
NVD
NVD
added 2024/05/03 3:16 a.m.20 views

CVE-2023-50210

D-Link G416 httpd API-AUTH Digest Processing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link G416 routers. Authentication is not required to exploit this...

8.8CVSS9.1AI score0.00637EPSS
Exploits0References2
NVD
NVD
added 2024/05/03 3:16 a.m.16 views

CVE-2023-50208

D-Link G416 ovpncfg Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link G416 routers. Authentication is not required to exploit this vulnerability. The specific flaw...

8.8CVSS9.1AI score0.00637EPSS
Exploits0References2
OSV
OSV
added 2024/05/03 3:16 a.m.3 views

CVE-2023-50208

D-Link G416 ovpncfg Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link G416 routers. Authentication is not required to exploit this vulnerability. The specific flaw...

8.8CVSS6.3AI score0.00637EPSS
Exploits0References2
Rows per page
Query Builder