CVE-2024-8461

A vulnerability, which was classified as problematic, was found in D-Link DNS-320 2.02b01. This affects an unknown part of the file /cgi-bin/discovery.cgi of the component Web Management Interface. The manipulation leads to information disclosure. It is possible to initiate the attack remotely. T...

CVE-2024-8461 D-Link DNS-320 Web Management Interface discovery.cgi information disclosure

A vulnerability, which was classified as problematic, was found in D-Link DNS-320 2.02b01. This affects an unknown part of the file /cgi-bin/discovery.cgi of the component Web Management Interface. The manipulation leads to information disclosure. It is possible to initiate the attack remotely. T...

CVE-2024-8461

The CVE-2024-8461 case concerns D-Link DNS-320 firmware 2.02b01 where the Web Management Interface file /cgi-bin/discovery.cgi mishandles access, enabling information disclosure. Documents state the vulnerability can be triggered remotely and that public exploits exist. The affected product is en...

CVE-2024-8461 D-Link DNS-320 Web Management Interface discovery.cgi information disclosure

A vulnerability, which was classified as problematic, was found in D-Link DNS-320 2.02b01. This affects an unknown part of the file /cgi-bin/discovery.cgi of the component Web Management Interface. The manipulation leads to information disclosure. It is possible to initiate the attack remotely. T...

CVE-2024-8460

A vulnerability, which was classified as problematic, has been found in D-Link DNS-320 2.02b01. Affected by this issue is some unknown functionality of the file /cgi-bin/widgetapi.cgi of the component Web Management Interface. The manipulation of the argument getHD/getSer/getSys leads to...

CVE-2024-8460

A vulnerability, which was classified as problematic, has been found in D-Link DNS-320 2.02b01. Affected by this issue is some unknown functionality of the file /cgi-bin/widgetapi.cgi of the component Web Management Interface. The manipulation of the argument getHD/getSer/getSys leads to...

CVE-2024-8460 D-Link DNS-320 Web Management Interface widget_api.cgi information disclosure

A vulnerability, which was classified as problematic, has been found in D-Link DNS-320 2.02b01. Affected by this issue is some unknown functionality of the file /cgi-bin/widgetapi.cgi of the component Web Management Interface. The manipulation of the argument getHD/getSer/getSys leads to...

CVE-2024-8460

The CVE-2024-8460 affects D-Link DNS-320 (2.02b01) Web Management Interface, specifically /cgi-bin/widget_api.cgi. The vulnerability arises from manipulating the getHD/getSer/getSys parameters, leading to information disclosure. Attacks can be launched remotely with high complexity, and exploitat...

D-Link DNS-320 信息泄露漏洞

The D-Link DNS-320 is a two-drive networked storage device NAS from AUO, designed for home and small office scenarios, supporting up to 4TB of storage capacity. The D-Link DNS-320 suffers from an information disclosure vulnerability that stems from the fact that incorrect operation of the...

PT-2024-6520 · D Link · D-Link Dns-320

Name of the Vulnerable Software and Affected Versions: D-Link DNS-320 version 2.02b01 Description: The issue is related to the disclosure of information in the /cgi-bin/discovery.cgi file of the Web Management Interface component in the D-Link DNS-320 router's firmware. This can be exploited...

PT-2024-6451 · D Link · D-Link Dns-320

Name of the Vulnerable Software and Affected Versions: D-Link DNS-320 version 2.02b01 Description: A problematic issue has been found in the Web Management Interface of the D-Link DNS-320, specifically in the file /cgi-bin/widget api.cgi. The manipulation of the getHD, getSer, or getSys argument...

D-Link多款产品 命令注入漏洞

D-Link DNS-320 and others are products of China-based AUO D-Link.D-Link DNS-320 is a NAS Network Attached Storage device.D-Link DNS-120 is a Network Storage Adapter.D-Link DNS-315L is a Network Attached Storage.D-Link DNS-315L is a Network Attached Storage.D-Link DNS-320 is a Network Attached...

New Go-based Botnet Exploiting Exploiting Dozens of IoT Vulnerabilities to Expand its Network

NOTE: In this blog, Zerobot refers to a botnet that spreads primarily through IoT and web application vulnerabilities. It is not associated with the chatbot ZeroBot.ai. A novel Go-based botnet called Zerobot has been observed in the wild proliferating by taking advantage of nearly two dozen...

D-Link DNS-320 Remote Code Execution Vulnerability

The loginmgr.cgi script in D-Link DNS-320 is vulnerable to remote code execution...

VulnCheck KEV: CVE-2020-25506

D-Link DNS-320 device contains a command injection vulnerability in the sytemmgr.cgi component that may allow for remote code execution...

D-Link DNS-320 Command Injection Vulnerability

The D-Link DNS-320 is a NAS Network Attached Storage device from D-Link Taiwan, China. The D-Link DNS-320 FW v2.06B01 Revision suffers from a command injection vulnerability that stems from the effects of command injection in the mgr.cgi component, which could lead to remote arbitrary code...

CVE-2020-25506

D-Link DNS-320 FW v2.06B01 Revision Ax is affected by command injection in the systemmgr.cgi component, which can lead to remote arbitrary code execution...

CVE-2020-25506

D-Link DNS-320 FW v2.06B01 Revision Ax is affected by command injection in the systemmgr.cgi component, which can lead to remote arbitrary code execution...

Command injection

D-Link DNS-320 FW v2.06B01 Revision Ax is affected by command injection in the systemmgr.cgi component, which can lead to remote arbitrary code execution...

CVE-2020-25506

D-Link DNS-320 FW v2.06B01 Revision Ax is affected by command injection in the systemmgr.cgi component, which can lead to remote arbitrary code execution...