Lucene search
K

25 matches found

RedhatCVE
RedhatCVE
added 2026/02/10 1:23 a.m.7 views

CVE-2026-2193

A vulnerability was detected in D-Link DI-7100G C1 24.04.18D1. Affected by this issue is the function setjhttpdinfo. Performing a manipulation of the argument usbusername results in command injection. Remote exploitation of the attack is possible...

8.8CVSS5.5AI score0.03333EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/02/10 1:23 a.m.7 views

CVE-2026-2194

A flaw has been found in D-Link DI-7100G C1 24.04.18D1. This affects the function startproxyclientemail. Executing a manipulation can lead to command injection. The attack can be executed remotely. The exploit has been published and may be used...

8.8CVSS5.4AI score0.03781EPSS
Exploits1References1
NVD
NVD
added 2026/02/09 12:15 a.m.7 views

CVE-2026-2194

A flaw has been found in D-Link DI-7100G C1 24.04.18D1. This affects the function startproxyclientemail. Executing a manipulation can lead to command injection. The attack can be executed remotely. The exploit has been published and may be used...

8.8CVSS0.03781EPSS
Exploits1References5
CVE
CVE
added 2026/02/08 11:32 p.m.19 views

CVE-2026-2194

The vulnerability CVE-2026-2194 affects D-Link DI-7100G C1 (firmware 24.04.18D1) in the start_proxy_client_email function. An attacker can remotely exploit a command injection vulnerability via manipulation of this function, with exploit activity described as published. Impact is described as ena...

8.8CVSS6.4AI score0.03781EPSS
Exploits1References5Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/02/08 11:32 p.m.2 views

CVE-2026-2194

A flaw has been found in D-Link DI-7100G C1 24.04.18D1. This affects the function startproxyclientemail. Executing a manipulation can lead to command injection. The attack can be executed remotely. The exploit has been published and may be used...

6.5CVSS5.4AI score0.03781EPSS
Exploits1References5Affected Software1
Vulnrichment
Vulnrichment
added 2026/02/08 11:32 p.m.4 views

CVE-2026-2194 D-Link DI-7100G C1 start_proxy_client_email command injection

A flaw has been found in D-Link DI-7100G C1 24.04.18D1. This affects the function startproxyclientemail. Executing a manipulation can lead to command injection. The attack can be executed remotely. The exploit has been published and may be used...

6.5CVSS5.4AI score0.03781EPSS
Exploits1References5
Cvelist
Cvelist
added 2026/02/08 11:32 p.m.33 views

CVE-2026-2194 D-Link DI-7100G C1 start_proxy_client_email command injection

A flaw has been found in D-Link DI-7100G C1 24.04.18D1. This affects the function startproxyclientemail. Executing a manipulation can lead to command injection. The attack can be executed remotely. The exploit has been published and may be used...

6.5CVSS0.03781EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2026/02/08 11:2 p.m.4 views

CVE-2026-2193 D-Link DI-7100G C1 set_jhttpd_info command injection

A vulnerability was detected in D-Link DI-7100G C1 24.04.18D1. Affected by this issue is the function setjhttpdinfo. Performing a manipulation of the argument usbusername results in command injection. Remote exploitation of the attack is possible...

6.5CVSS5.5AI score0.03333EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2026/02/08 12:0 a.m.9 views

PT-2026-7027

Name of the Vulnerable Software and Affected Versions D-Link DI-7100G C1 version 24.04.18D1 Description A flaw exists in the start proxy client email function that can allow for command injection. This issue can be exploited remotely. Recommendations At the moment, there is no information about a...

6.5CVSS5.5AI score0.03781EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/06 6:31 p.m.5 views

EUVD-2025-32550

A flaw has been found in D-Link DI-7100G C1 up to 20250928. This vulnerability affects the function sub4C0990 of the file /webchat/login.cgi of the component jhttpd. Executing manipulation of the argument openid can lead to buffer overflow. It is possible to launch the attack remotely. The exploi...

9CVSS6.5AI score0.00919EPSS
Exploits0References6
NVD
NVD
added 2025/10/06 5:16 p.m.8 views

CVE-2025-11339

A vulnerability has been found in D-Link DI-7100G C1 up to 20250928. This issue affects the function sub4BD4F8 of the file /webchat/hiblock.asp of the component jhttpd. The manipulation of the argument popupId leads to buffer overflow. The attack can be initiated remotely. The exploit has been...

9CVSS0.00881EPSS
Exploits0References6
OSV
OSV
added 2025/10/06 5:16 p.m.5 views

CVE-2025-11339

A vulnerability has been found in D-Link DI-7100G C1 up to 20250928. This issue affects the function sub4BD4F8 of the file /webchat/hiblock.asp of the component jhttpd. The manipulation of the argument popupId leads to buffer overflow. The attack can be initiated remotely. The exploit has been...

8.7CVSS6.2AI score0.00881EPSS
Exploits0References6
NVD
NVD
added 2025/10/06 4:15 p.m.7 views

CVE-2025-11338

A flaw has been found in D-Link DI-7100G C1 up to 20250928. This vulnerability affects the function sub4C0990 of the file /webchat/login.cgi of the component jhttpd. Executing manipulation of the argument openid can lead to buffer overflow. It is possible to launch the attack remotely. The exploi...

9.8CVSS0.00919EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2025/10/06 4:2 p.m.3 views

CVE-2025-11338 D-Link DI-7100G C1 jhttpd login.cgi sub_4C0990 buffer overflow

A flaw has been found in D-Link DI-7100G C1 up to 20250928. This vulnerability affects the function sub4C0990 of the file /webchat/login.cgi of the component jhttpd. Executing manipulation of the argument openid can lead to buffer overflow. It is possible to launch the attack remotely. The exploi...

9CVSS6.7AI score0.00919EPSS
Exploits0References5
CVE
CVE
added 2025/10/06 4:2 p.m.32 views

CVE-2025-11338

Affected product: D-Link DI-7100G C1. The vulnerability is a buffer overflow in the jhttpd component, triggered by manipulating the openid argument in the /webchat/login.cgi file, specifically in the function sub_4C0990. This can be exploited remotely, with exploits published. Impact is potential...

9.8CVSS6.7AI score0.00919EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2025/10/06 1:15 p.m.4 views

CVE-2025-11335

A weakness has been identified in D-Link DI-7100G C1 up to 20250928. Affected by this vulnerability is the function sub46409C of the file /mspinfo.htm?flag=qos of the component jhttpd. This manipulation of the argument iface causes command injection. The attack is possible to be carried out...

7.2CVSS5.6AI score0.04755EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2025/10/06 12:32 p.m.3 views

CVE-2025-11335 D-Link DI-7100G C1 jhttpd msp_info.htm sub_46409C command injection

A weakness has been identified in D-Link DI-7100G C1 up to 20250928. Affected by this vulnerability is the function sub46409C of the file /mspinfo.htm?flag=qos of the component jhttpd. This manipulation of the argument iface causes command injection. The attack is possible to be carried out...

5.8CVSS6.7AI score0.04755EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/06 12:32 p.m.4 views

EUVD-2025-32533

A weakness has been identified in D-Link DI-7100G C1 up to 20250928. Affected by this vulnerability is the function sub46409C of the file /mspinfo.htm?flag=qos of the component jhttpd. This manipulation of the argument iface causes command injection. The attack is possible to be carried out...

5.8CVSS6.5AI score0.04755EPSS
Exploits0References7
CNNVD
CNNVD
added 2025/10/06 12:0 a.m.6 views

D-Link DI-7100G 命令注入漏洞

The D-Link DI-7100G C1 is an enterprise-class router from D-Link, designed for small and medium-sized businesses. The D-Link DI-7100G C1 suffers from a command injection vulnerability that originates from the parameter iface in the file /mspinfo.htm?flag=qos that fails to correctly filter...

7.2CVSS7.5AI score0.04755EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/10/06 12:0 a.m.5 views

PT-2025-40906

Name of the Vulnerable Software and Affected Versions D-Link DI-7100G C1 versions up to 20250928 Description A buffer overflow issue exists in the jhttpd component of D-Link DI-7100G C1. The issue is located in the sub 4C0990 function of the /webchat/login.cgi file. Manipulation of the openid...

9CVSS9AI score0.00919EPSS
Exploits0References11
Rows per page
Query Builder