Lucene search
K

14 matches found

NVD
NVD
added 2026/06/01 5:16 p.m.20 views

CVE-2026-10270

A vulnerability was detected in D-Link DI-7001 MINI up to 19.09.19A1. Impacted is the function sprintf of the file /httpddebug.asp of the component API. The manipulation of the argument Time results in stack-based buffer overflow. The attack may be performed from remote. The exploit is now public...

9CVSS0.00687EPSS
Exploits1References7
Vulnrichment
Vulnrichment
added 2026/06/01 3:30 p.m.10 views

CVE-2026-10270 D-Link DI-7001 MINI API httpd_debug.asp sprintf stack-based overflow

A vulnerability was detected in D-Link DI-7001 MINI up to 19.09.19A1. Impacted is the function sprintf of the file /httpddebug.asp of the component API. The manipulation of the argument Time results in stack-based buffer overflow. The attack may be performed from remote. The exploit is now public...

9CVSS7.7AI score0.00687EPSS
Exploits1References7
CNNVD
CNNVD
added 2026/06/01 12:0 a.m.10 views

D-Link DI-7001 MINI 安全漏洞

The D-Link DI-7001 MINI is a multi-functional smart gateway from D-Link Corporation. The D-Link DI-7001 MINI, versions prior to 19.09.19A1, have a security vulnerability. This vulnerability stems from the improper handling of the parameter “Time” in the function “sprintf” of the API component’s...

9CVSS8.4AI score0.00687EPSS
Exploits1References7
Positive Technologies
Positive Technologies
added 2026/05/31 12:0 a.m.14 views

PT-2026-45210

Name of the Vulnerable Software and Affected Versions D-Link DI-7001 MINI versions prior to 19.09.19A1 Description A stack-based buffer overflow occurs in the API component within the sprintf function of the '/httpd debug.asp' endpoint. This issue is triggered by the manipulation of the Time...

9CVSS7.5AI score0.00687EPSS
Exploits1References10
RedhatCVE
RedhatCVE
added 2025/10/28 9:1 p.m.6 views

CVE-2025-12313

A vulnerability has been found in D-Link DI-7001 MINI 19.09.19A1/24.04.18B1. The affected element is an unknown function of the file /mspinfo.htm. Such manipulation of the argument cmd leads to command injection. The attack may be launched remotely. The exploit has been disclosed to the public an...

9.8CVSS6.9AI score0.03956EPSS
Exploits1References1
NVD
NVD
added 2025/10/27 8:15 p.m.6 views

CVE-2025-12313

A vulnerability has been found in D-Link DI-7001 MINI 19.09.19A1/24.04.18B1. The affected element is an unknown function of the file /mspinfo.htm. Such manipulation of the argument cmd leads to command injection. The attack may be launched remotely. The exploit has been disclosed to the public an...

9.8CVSS0.03956EPSS
Exploits1References5
OSV
OSV
added 2025/10/27 8:15 p.m.4 views

CVE-2025-12313

A vulnerability has been found in D-Link DI-7001 MINI 19.09.19A1/24.04.18B1. The affected element is an unknown function of the file /mspinfo.htm. Such manipulation of the argument cmd leads to command injection. The attack may be launched remotely. The exploit has been disclosed to the public an...

9.8CVSS5.6AI score0.03956EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/10/27 12:0 a.m.4 views

PT-2025-44031

Name of the Vulnerable Software and Affected Versions D-Link DI-7001 MINI versions 19.09.19A1 through 24.04.18B1 Description A flaw exists in D-Link DI-7001 MINI that allows for command injection. This occurs due to improper handling of the cmd argument within an unknown function of the /msp...

9.8CVSS6.4AI score0.03956EPSS
Exploits1References7
CNVD
CNVD
added 2025/10/21 12:0 a.m.2 views

D-Link DI-7001 MINI OS Command Injection Vulnerability

D-Link DI-7001 MINI is a multi-functional intelligent gateway from China AUO D-Link. The D-Link DI-7001 MINI suffers from an operating system command injection vulnerability that can be exploited by an attacker to execute arbitrary code on the system...

9.8CVSS8.5AI score0.04033EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/10/07 8:32 p.m.4 views

CVE-2025-11408 D-Link DI-7001 MINI dbsrv.asp buffer overflow

A security vulnerability has been detected in D-Link DI-7001 MINI 24.04.18B1. The affected element is an unknown function of the file /dbsrv.asp. Such manipulation of the argument str leads to buffer overflow. The attack may be launched remotely. The exploit has been disclosed publicly and may be...

9CVSS6.8AI score0.00802EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/10/07 8:2 p.m.8 views

CVE-2025-11407 D-Link DI-7001 MINI upgrade_filter.asp os command injection

A weakness has been identified in D-Link DI-7001 MINI 24.04.18B1. Impacted is an unknown function of the file /upgradefilter.asp. This manipulation of the argument path causes os command injection. The attack may be initiated remotely. The exploit has been made available to the public and could b...

6.5CVSS6.4AI score0.04033EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/10/07 12:0 a.m.5 views

PT-2025-41179

Name of the Vulnerable Software and Affected Versions D-Link DI-7001 MINI version 24.04.18B1 Description A flaw exists in D-Link DI-7001 MINI version 24.04.18B1. The issue involves manipulation of the path argument within the file /upgrade filter.asp, leading to os command injection. This...

6.5CVSS6.1AI score0.04033EPSS
Exploits1References8
CNNVD
CNNVD
added 2025/10/07 12:0 a.m.5 views

D-Link DI-7001 MINI 安全漏洞

D-Link DI-7001 MINI is a multi-functional intelligent gateway from China AUO D-Link. The D-Link DI-7001 MINI suffers from a buffer overflow vulnerability, which is caused by incorrect bounds checking of functions in the file /dbsrv.asp. An attacker could exploit the vulnerability to execute...

9.8CVSS8.1AI score0.00802EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2025/09/30 12:0 a.m.6 views

PT-2025-41184

Name of the Vulnerable Software and Affected Versions D-Link DI-7001 MINI version 24.04.18B1 Description A security issue exists in D-Link DI-7001 MINI. Manipulation of the str argument within an unknown function of the /dbsrv.asp file can lead to a buffer overflow. This issue may be exploited...

9CVSS8.6AI score0.00802EPSS
Exploits1References8
Rows per page
Query Builder