66 matches found
EUVD-2019-7863
Malware in sbrugna...
EUVD-2018-8248
Malware in sbrugna...
EUVD-2019-7862
Malware in sbrugna...
EUVD-2020-13795
Malware in sbrugna...
EUVD-2022-49445
Malicious code in bioql PyPI...
EUVD-2023-58804
Malicious code in bioql PyPI...
CVE-2023-33735
D-Link DIR-846 v1.00A52 was discovered to contain a remote command execution RCE vulnerability via the tomographypingaddress parameter in the /HNAP1 interface...
CVE-2023-6580
A vulnerability, which was classified as critical, was found in D-Link DIR-846 FW100A53DBR. This affects an unknown part of the file /HNAP1/ of the component QoS POST Handler. The manipulation of the argument smartqosexpressdevices/smartqosnormaldevices leads to deserialization. It is possible to...
CVE-2022-46641
D-Link DIR-846 A1FW100A43 was discovered to contain a command injection vulnerability via the lan0dhcpsstaticlist parameter in the SetIpMacBindSettings function...
CVE-2022-46552
D-Link DIR-846 Firmware FW100A53DBR was discovered to contain a remote command execution RCE vulnerability via the lan0dhcpsstaticlist parameter. This vulnerability is exploited via a crafted POST request...
CVE-2022-46642
D-Link DIR-846 A1FW100A43 was discovered to contain a command injection vulnerability via the autoupgradehour parameter in the SetAutoUpgradeInfo function...
CVE-2020-21016
D-Link DIR-846 devices with firmware 100A35 allow remote attackers to execute arbitrary code as root via HNAP1/control/SetGuestWLanSettings.php...
CVE-2019-17509
D-Link DIR-846 devices with firmware 100A35 allow remote attackers to execute arbitrary OS commands as root by leveraging admin access and sending a /HNAP1/ request for SetMasterWLanSettings with shell metacharacters to /squashfs-root/www/HNAP1/control/SetMasterWLanSettings.php...
CVE-2019-17510
D-Link DIR-846 devices with firmware 100A35 allow remote attackers to execute arbitrary OS commands as root by leveraging admin access and sending a /HNAP1/ request for SetWizardConfig with shell metacharacters to /squashfs-root/www/HNAP1/control/SetWizardConfig.php...
D-Link DIR-846 Deserialization Vulnerability
The D-Link DIR-846 is a wireless router from China's AUO D-Link. The D-Link DIR-846 suffers from a deserialization vulnerability that originates from the unsafe deserialization of the parameters smartqosexpressdevices/smartqosnormaldevices of the file /HNAP1/ in the receipt of user-submitted...
CVE-2023-6580
A vulnerability, which was classified as critical, was found in D-Link DIR-846 FW100A53DBR. This affects an unknown part of the file /HNAP1/ of the component QoS POST Handler. The manipulation of the argument smartqosexpressdevices/smartqosnormaldevices leads to deserialization. It is possible to...
Deserialization of untrusted data
A vulnerability, which was classified as critical, was found in D-Link DIR-846 FW100A53DBR. This affects an unknown part of the file /HNAP1/ of the component QoS POST Handler. The manipulation of the argument smartqosexpressdevices/smartqosnormaldevices leads to deserialization. It is possible to...
CVE-2023-6580 D-Link DIR-846 QoS POST deserialization
A vulnerability, which was classified as critical, was found in D-Link DIR-846 FW100A53DBR. This affects an unknown part of the file /HNAP1/ of the component QoS POST Handler. The manipulation of the argument smartqosexpressdevices/smartqosnormaldevices leads to deserialization. It is possible to...
The vulnerability of D-Link DIR-846 router’s microprogramming software lies in the lack of protective measures for the website structure, allowing attackers to execute arbitrary code.
The vulnerability of D-Link DIR-846 router’s microprogramming software is related to the lack of measures taken to protect the website structure during the QoS POST process. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely...
CVE-2023-43284
D-Link Wireless MU-MIMO Gigabit AC1200 Router DIR-846 100A53DBR-Retail devices allow an authenticated remote attacker to execute arbitrary code via an unspecified manipulation of the QoS POST parameter...