28 matches found
CVE-2026-10206
A vulnerability was detected in D-Link DI-8400 up to 16.07.26A1. This affects an unknown function of the file /dbsrv.asp. Performing a manipulation of the argument str results in stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit is now public and may be used...
CVE-2026-10206 D-Link DI-8400 dbsrv.asp stack-based overflow
A vulnerability was detected in D-Link DI-8400 up to 16.07.26A1. This affects an unknown function of the file /dbsrv.asp. Performing a manipulation of the argument str results in stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit is now public and may be used...
CVE-2026-10206
CVE-2026-10206 affects D-Link DI-8400 with vulnerability in /dbsrv.asp (unknown function) where manipulation of the argument str causes a stack-based buffer overflow. Exploitation is remote and the exploit is public. Connected sources confirm affected device and vulnerable component but do not pr...
PT-2026-45198
Name of the Vulnerable Software and Affected Versions D-Link DI-8400 versions prior to 16.07.26A1 Description A stack-based buffer overflow occurs in an unknown function within the '/dbsrv.asp' endpoint. This issue is triggered by manipulating the str argument, allowing for remote exploitation. A...
EUVD-2025-22768
Malicious code in bioql PyPI...
EUVD-2025-26658
Malicious code in bioql PyPI...
D-Link DI-8400 yyxz.asp File Stack Buffer Overflow Vulnerability
The D-Link DI-8400 is an enterprise-class Internet behavior management router from D-Link for medium to large enterprise network environments. The D-Link DI-8400 suffers from a stack buffer overflow vulnerability that originates from a stack-based buffer overflow in the parameter ID of the functi...
CVE-2025-9938
A weakness has been identified in D-Link DI-8400 16.07.26A1. The affected element is the function yyxzdlinkasp of the file /yyxz.asp. This manipulation of the argument ID causes stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been made available to the...
D-Link DI-8400 安全漏洞
The D-Link DI-8400 is an enterprise-class Internet behavior management router from D-Link for medium to large enterprise network environments. The D-Link DI-8400 suffers from a stack buffer overflow vulnerability that originates from a stack-based buffer overflow in the parameter ID of the functi...
CVE-2025-9938 D-Link DI-8400 yyxz.asp yyxz_dlink_asp stack-based overflow
A weakness has been identified in D-Link DI-8400 16.07.26A1. The affected element is the function yyxzdlinkasp of the file /yyxz.asp. This manipulation of the argument ID causes stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been made available to the...
CVE-2025-9938
CVE-2025-9938 affects D-Link DI-8400 (firmware 16.07.26A1). The vulnerability is a stack-based overflow in the function yyxz_dlink_asp within /yyxz.asp, triggered by manipulating the ID argument. It supports remote initiation with a public exploit available. Documented impacts include arbitrary c...
CVE-2025-8175
A vulnerability was found in D-Link DI-8400 16.07.26A1. It has been classified as problematic. This affects an unknown part of the file usbpaswd.asp of the component jhttpd. The manipulation of the argument shareenable leads to null pointer dereference. It is possible to initiate the attack...
D-Link DI-8400 Null Pointer Dereference Vulnerability
D-Link DI-8400 is an Internet Behavior Management router from D-Link designed for medium to large enterprise network environments, supporting 360 users with parallel access and full Gigabit port configuration. The D-Link DI-8400 suffers from a null pointer dereference vulnerability that originate...
CVE-2025-8175
A vulnerability was found in D-Link DI-8400 16.07.26A1. It has been classified as problematic. This affects an unknown part of the file usbpaswd.asp of the component jhttpd. The manipulation of the argument shareenable leads to null pointer dereference. It is possible to initiate the attack...
CVE-2025-8175
A vulnerability was found in D-Link DI-8400 16.07.26A1. It has been classified as problematic. This affects an unknown part of the file usbpaswd.asp of the component jhttpd. The manipulation of the argument shareenable leads to null pointer dereference. It is possible to initiate the attack...
CVE-2025-8175
CVE-2025-8175 affects D-Link DI-8400, version 16.07.26A1, where the jhttpd component’s usb_paswd.asp contains a vulnerable handling path for the parameter share_enable . Manipulating this argument triggers a null pointer dereference, enabling a remote attack and potentially causing a service cras...
CVE-2025-8175 D-Link DI-8400 jhttpd usb_paswd.asp null pointer dereference
A vulnerability was found in D-Link DI-8400 16.07.26A1. It has been classified as problematic. This affects an unknown part of the file usbpaswd.asp of the component jhttpd. The manipulation of the argument shareenable leads to null pointer dereference. It is possible to initiate the attack...
CVE-2025-8175 D-Link DI-8400 jhttpd usb_paswd.asp null pointer dereference
A vulnerability was found in D-Link DI-8400 16.07.26A1. It has been classified as problematic. This affects an unknown part of the file usbpaswd.asp of the component jhttpd. The manipulation of the argument shareenable leads to null pointer dereference. It is possible to initiate the attack...
PT-2025-30946 · D Link · D-Link Di-8400
Name of the Vulnerable Software and Affected Versions: D-Link DI-8400 version 16.07.26A1 Description: A vulnerability exists in the jhttpd component of the software. The manipulation of the share enable argument in the usb paswd.asp file leads to a null pointer dereference. This issue can be...
CVE-2024-52739
D-LINK DI-8400 v16.07.26A1 was discovered to contain multiple remote command execution RCE vulnerabilities in the mspinfohtm function via the flag and cmd parameters...