366 matches found
CVE-2024-13102
A vulnerability classified as critical was found in D-Link DIR-816 A2 1.10CNB05R1B011D88210. This vulnerability affects unknown code of the file /goform/DDNS of the component DDNS Service. The manipulation leads to improper access controls. The attack can be initiated remotely. The exploit has be...
CVE-2024-13103
A vulnerability, which was classified as critical, has been found in D-Link DIR-816 A2 1.10CNB05R1B011D88210. This issue affects some unknown processing of the file /goform/form2AddVrtsrv.cgi of the component Virtual Service Handler. The manipulation leads to improper access controls. The attack...
CVE-2024-13103 D-Link DIR-816 A2 Virtual Service form2AddVrtsrv.cgi access control
A vulnerability, which was classified as critical, has been found in D-Link DIR-816 A2 1.10CNB05R1B011D88210. This issue affects some unknown processing of the file /goform/form2AddVrtsrv.cgi of the component Virtual Service Handler. The manipulation leads to improper access controls. The attack...
D-Link DIR-816 A2 安全漏洞
The D-Link DIR-816 A2 is a wireless router from China's AUO D-Link. An access control error vulnerability exists in D-Link DIR-816 A2 version 1.10CNB05R1B011D88210, which stems from improper access control in /goform/form2Dhcpd.cgi. An attacker can exploit this vulnerability to be able to set up...
D-Link DIR-816 A2 安全漏洞
The D-Link DIR-816 A2 is a wireless router from China's AUO D-Link. An access control error vulnerability exists in D-Link DIR-816 A2 version 1.10CNB05R1B011D88210, which stems from improper access control in /goform/form2LocalAclEditcfg.cgi. An attacker can exploit this vulnerability to be able ...
D-Link DIR-816 A2 安全漏洞
The D-Link DIR-816 A2 is a wireless router from China's AUO D-Link. An access control error vulnerability exists in D-Link DIR-816 A2 version 1.10CNB05R1B011D88210, which stems from improper access control in /goform/form2IPQoSTcAdd. An attacker can exploit this vulnerability to be able to set th...
D-Link DIR-816 A2 安全漏洞
The D-Link DIR-816 A2 is a wireless router from China's AUO D-Link. An access control error vulnerability exists in D-Link DIR-816 A2 version 1.10CNB05R1B011D88210, which stems from improper access control in /goform/form2NetSniper.cgi. An attacker can exploit this vulnerability to be able to set...
PT-2025-2005 · D Link · D-Link Dir-816
Name of the Vulnerable Software and Affected Versions: D-Link DIR-816 A2 version 1.10CNB05 R1B011D88210 Description: The issue is related to the IP QoS Handler component of the D-Link DIR-816 A2 router's firmware, which is associated with inadequate access controls. This can be exploited by a...
PT-2024-10145 · D Link · D-Link Dir-816 A2
Name of the Vulnerable Software and Affected Versions: D-Link DIR-816 A2 version 1.10CNB05 R1B011D88210 Description: A critical issue is present in the D-Link DIR-816 A2, related to inadequate access controls in the /goform/form2NetSniper.cgi file. This can be exploited remotely by sending a...
PT-2025-2001 · D Link · D-Link Dir-816 A2
Name of the Vulnerable Software and Affected Versions: D-Link DIR-816 A2 version 1.10CNB05 R1B011D88210 Description: A critical issue affects the unknown code of the file /goform/DDNS of the DDNS Service component, leading to improper access controls. The attack can be initiated remotely. The...
a2 (>=0.1.0 <=0.3.17), agentos (>=0.0.5 <=0.0.7) +164 more potentially affected by CVE-2024-37061 via mlflow (>=1.11.0 <=2.13.1)
mlflow PYPI version =1.11.0, =0.1.0, =0.0.5, =0.1.2, =1.0.72, =0.0.1, =1.0.72.1, =1.4.0, =0.2.5, =0.1.3, =3.0.0, =0.1.0, =0.3.5, =0.8.0, =1.0.0 and more Source cves: CVE-2024-37061 Source advisory: OSV:GHSA-PQCV-QW2R-R859...
a2 (>=0.1.0 <=0.3.17), agentos (>=0.0.5 <=0.0.7) +162 more potentially affected by CVE-2024-3848 via mlflow (>=0.8.2 <=2.11.3)
mlflow PYPI version =0.8.2, =0.1.0, =0.0.5, =0.1.2, =1.0.18.2, =0.0.1, =1.0.41, =1.4.0, =0.2.5, =3.0.0, =0.1.0, =0.3.5, =0.8.0, =1.2.0, =1.9.30 and more Source cves: CVE-2024-3848 Source advisory: OSV:PYSEC-2024-244...
a2 (>=0.1.0 <=0.3.17), agentos (>=0.0.5 <=0.0.7) +162 more potentially affected by CVE-2024-1483 via mlflow (>=0.8.2 <=2.11.3)
mlflow PYPI version =0.8.2, =0.1.0, =0.0.5, =0.1.2, =1.0.18.2, =0.0.1, =1.0.41, =1.4.0, =0.2.5, =3.0.0, =0.1.0, =0.3.5, =0.8.0, =1.2.0, =1.9.30 and more Source cves: CVE-2024-1483 Source advisory: OSV:GHSA-F82R-JJ5R-6G97...
The vulnerability of D-Link DIR-816 A2 wireless routers’ microprogramming software lies in the fact that the operation is performed outside the buffer in memory. This allows attackers to enhance their privileges and execute arbitrary commands.
The vulnerability of the microprogrammed software of D-Link DIR-816 A2 wireless routers is related to the escape from the buffer boundaries in memory, resulting from the failure to take measures to neutralize special elements used in the operating system’s command for processing the urladd...
a2 (>=0.1.0 <=0.3.17), agentos (>=0.0.5 <=0.0.7) +148 more potentially affected by CVE-2024-27133 via mlflow (>=0.8.2 <=2.0.1)
mlflow PYPI version =0.8.2, =0.1.0, =0.0.5, =0.1.2, =1.0.18.2, =0.0.1, =1.0.41, =1.4.0, =0.2.5, =3.0.0, =0.1.0, =0.3.5, =0.8.0, =0.0.4, =0.0.7 and more Source cves: CVE-2024-27133 Source advisory: OSV:GHSA-3V79-Q7PH-J75H...
CVE-2024-0921
A vulnerability has been found in D-Link DIR-816 A2 1.10CNB04 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /goform/setDeviceSettings of the component Web Interface. The manipulation of the argument statuscheckpppoeuser leads to os command...
CVE-2024-0921 D-Link DIR-816 A2 Web Interface setDeviceSettings os command injection
A vulnerability has been found in D-Link DIR-816 A2 1.10CNB04 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /goform/setDeviceSettings of the component Web Interface. The manipulation of the argument statuscheckpppoeuser leads to os command...
CVE-2024-0921
CVE-2024-0921 affects D-Link DIR-816 A2 (firmware 1.10CNB04). The Web Interface file /goform/setDeviceSettings is vulnerable; manipulating the statuscheckpppoeuser parameter enables OS command injection. Attacks can be launched remotely and exploit details have been publicly disclosed. Multiple s...
PT-2024-1399 · D Link · D-Link Dir-816 A2
Name of the Vulnerable Software and Affected Versions: D-Link DIR-816 A2 version 1.10CNB04 Description: A critical vulnerability has been found in the Web Interface component of the D-Link DIR-816 A2, specifically in the /goform/setDeviceSettings file. The manipulation of the statuscheckpppoeuser...
a2 (>=0.1.0 <=0.3.17), aerocm (>=0.1.1b0 <=0.2.0b0) +114 more potentially affected by CVE-2024-22421 via jupyterlab (>=4.0.0 <=4.0.10)
jupyterlab PYPI version =4.0.0, =0.1.0, =0.1.1b0, =0.1.0b0, =0.1.0b0, =0.1.0, =0.1.1, =0.6.4, =0.8.0, =0.0.4a0, =0.2.2, =0.26.0, =0.1.0, =0.1.0, =0.1.0, =0.1.1, =0.2.4 and more Source cves: CVE-2024-22421 Source advisory: OSV:GHSA-44CC-43RP-5947...