Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

95 matches found

Positive Technologies
Positive Technologiesadded 2026/06/03 12:0 a.m.13 views

PT-2026-46055

Name of the Vulnerable Software and Affected Versions DD-WRT affected versions not specified Description A stack-based buffer overflow exists in the UPnP service of certain DD-WRT router firmware. The issue occurs when the service incorrectly handles large ST:uuid values within crafted M-SEARCH...

5.9AI score
Exploits1References17
VulnCheck KEV
VulnCheck KEVadded 2026/06/03 12:0 a.m.12 views

VulnCheck KEV: CVE-2021-27137

DD-WRT router firmware before changeset 45723 contains a stack buffer overflow vulnerability in the UPnP service that allows remote attackers to execute arbitrary code by sending specially crafted M-SEARCH requests with oversized ST:uuid values via UDP port 1900. Attackers can exploit this...

6.4AI score
In wildExploits1References2
Positive Technologies
Positive Technologiesadded 2026/01/21 12:0 a.m.6 views

PT-2026-3807

DD-WRT version 45723 contains a buffer overflow vulnerability in the UPNP network discovery service that allows remote attackers to potentially execute arbitrary code. Attackers can send crafted M-SEARCH packets with oversized UUID payloads to trigger buffer overflow conditions on the target devi...

9.8CVSS6.4AI score0.00975EPSS
Exploits0References6
CNNVD
CNNVDadded 2026/01/21 12:0 a.m.2 views

DD-WRT security vulnerabilities

DD-WRT is an open-source alternative firmware based on Linux, developed by DD-WRT. It is suitable for various WLAN routers and embedded systems. Version DD-WRT 45723 contains a security vulnerability, which stems from a buffer overflow in the UPNP network discovery service. This vulnerability cou...

9.8CVSS6.3AI score0.00975EPSS
Exploits0References5
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2008-6933

Malware in sbrugna...

6.8CVSS6.4AI score0.01452EPSS
Exploits1References7
EUVD
EUVDadded 2025/10/07 12:30 a.m.9 views

EUVD-2009-2756

Malware in sbrugna...

7.5CVSS6.4AI score0.05129EPSS
Exploits1References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2012-6152

Malware in sbrugna...

9.3CVSS8.6AI score0.01691EPSS
Exploits1References5
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2008-6934

Malware in sbrugna...

6.8CVSS6.4AI score0.01311EPSS
Exploits1References6
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2022-32132

Malicious code in bioql PyPI...

9.8CVSS5.9AI score0.00993EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/22 4:19 p.m.6 views

CVE-2020-13976

An issue was discovered in DD-WRT through 16214. The Diagnostic page allows remote attackers to execute arbitrary commands via shell metacharacters in the host field of the ping command. Exploitation through CSRF might be possible. NOTE: software maintainers consider the report invalid because it...

8.8CVSS8.1AI score0.01766EPSS
Exploits1
BDU FSTEC
BDU FSTECadded 2022/08/10 12:0 a.m.3 views

The vulnerability of the httpd module in DD-WRT microprogramming software allows a hacker to execute arbitrary code.

The vulnerability of the httpd module in DD-WRT microprogramming software is related to insufficient validation of input data. Exploiting this vulnerability allows an attacker to execute arbitrary code by sending a specially crafted HTTP request...

5.3CVSS6.8AI score0.00993EPSS
Exploits1References5Affected Software1
OSV
OSVadded 2022/08/05 10:15 p.m.2 views

CVE-2022-27631

A memory corruption vulnerability exists in the httpd unescape functionality of DD-WRT Revision 32270 - Revision 48599. A specially-crafted HTTP request can lead to memory corruption. An attacker can send a network request to trigger this vulnerability...

9.8CVSS7.3AI score0.00993EPSS
Exploits1References1
NVD
NVDadded 2022/08/05 10:15 p.m.33 views

CVE-2022-27631

A memory corruption vulnerability exists in the httpd unescape functionality of DD-WRT Revision 32270 - Revision 48599. A specially-crafted HTTP request can lead to memory corruption. An attacker can send a network request to trigger this vulnerability...

9.8CVSS0.00993EPSS
Exploits1References1
Prion
Prionadded 2022/08/05 10:15 p.m.35 views

Memory corruption

A memory corruption vulnerability exists in the httpd unescape functionality of DD-WRT Revision 32270 - Revision 48599. A specially-crafted HTTP request can lead to memory corruption. An attacker can send a network request to trigger this vulnerability...

7.5CVSS9.5AI score0.00993EPSS
Exploits1References1Affected Software1
CVE
CVEadded 2022/08/05 9:19 p.m.114 views

CVE-2022-27631

The CVE-2022-27631 entry describes a memory corruption vulnerability in DD-WRT’s httpd unescape function affecting revisions 32270–48599. The issue stems from assuming two characters follow a '%' and performing an unsafe strcpy without validating the second character, which can read beyond the st...

9.8CVSS9.5AI score0.00993EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichmentadded 2022/08/05 9:19 p.m.8 views

CVE-2022-27631

A memory corruption vulnerability exists in the httpd unescape functionality of DD-WRT Revision 32270 - Revision 48599. A specially-crafted HTTP request can lead to memory corruption. An attacker can send a network request to trigger this vulnerability...

5.3CVSS9.5AI score0.00993EPSS
Exploits1References1
Cvelist
Cvelistadded 2022/08/05 9:19 p.m.37 views

CVE-2022-27631

A memory corruption vulnerability exists in the httpd unescape functionality of DD-WRT Revision 32270 - Revision 48599. A specially-crafted HTTP request can lead to memory corruption. An attacker can send a network request to trigger this vulnerability...

5.3CVSS9.8AI score0.00993EPSS
Exploits1References1
Talos
Talosadded 2022/07/27 12:0 a.m.96 views

DD-WRT httpd unescape memory corruption vulnerability

Summary A memory corruption vulnerability exists in the httpd unescape functionality of DD-WRT Revision 32270 - Revision 48599. A specially-crafted HTTP request can lead to memory corruption. An attacker can send a network request to trigger this vulnerability. Tested Versions DD-WRT Revision 322...

9.8CVSS7.4AI score0.00993EPSS
Exploits1
Exploit DB
Exploit DBadded 2021/03/31 12:0 a.m.328 views

DD-WRT 45723 - UPNP Buffer Overflow (PoC)

Exploit Title: DD-WRT 45723 - UPNP Buffer Overflow PoC Date: 24.03.2021 Exploit Author: Selim Enes 'Enesdex' Karaduman Vendor Homepage: https://dd-wrt.com/ Software Link: https://download1.dd-wrt.com/dd-wrtv2/downloads/betas/2021/ Version: 45723 or prior Tested on: TP-Link Archer C7...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2021/03/31 12:0 a.m.362 views

DD-WRT 45723 Buffer Overflow

Exploit Title: DD-WRT 45723 - UPNP Buffer Overflow PoC Date: 24.03.2021 Exploit Author: Selim Enes 'Enesdex' Karaduman Vendor Homepage: https://dd-wrt.com/ Software Link: https://download1.dd-wrt.com/dd-wrtv2/downloads/betas/2021/ Version: 45723 or prior Tested on: TP-Link Archer C7...

0.7AI score
Exploits0
Rows per page
Query Builder