47 matches found
EUVD-2025-13524
Malicious code in bioql PyPI...
D-Link DIR-880L /htdocs/ssdpcgi File Command Injection Vulnerability
The D-Link DIR-880L is a dual-band Gigabit wireless router from China's AUO D-Link. The D-Link DIR-880L suffers from a command injection vulnerability, which arises from the failure of the file /htdocs/ssdpcgi in the component Request Header Handler to correctly filter the constructed command...
D-Link DIR-880L Multiple Vulnerabilities (2020 - 2025)
D-Link DIR-880L devices are prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
CVE-2025-4341
A vulnerability classified as critical was found in D-Link DIR-880L up to 104WWb01. Affected by this vulnerability is the function sub16570 of the file /htdocs/ssdpcgi of the component Request Header Handler. The manipulation of the argument HTTPST/REMOTEADDR/REMOTEPORT/SERVERID leads to command...
CVE-2025-4341
A vulnerability classified as critical was found in D-Link DIR-880L up to 104WWb01. Affected by this vulnerability is the function sub16570 of the file /htdocs/ssdpcgi of the component Request Header Handler. The manipulation of the argument HTTPST/REMOTEADDR/REMOTEPORT/SERVERID leads to command...
CVE-2025-4341
A vulnerability classified as critical was found in D-Link DIR-880L up to 104WWb01. Affected by this vulnerability is the function sub16570 of the file /htdocs/ssdpcgi of the component Request Header Handler. The manipulation of the argument HTTPST/REMOTEADDR/REMOTEPORT/SERVERID leads to command...
CVE-2025-4341
D-Link DIR-880L up to firmware 104WWb01 contains a command-injection vulnerability in the Request Header Handler’s /htdocs/ssdpcgi, specifically the sub_16570 function. Input arguments HTTP_ST/REMOTE_ADDR/REMOTE_PORT/SERVER_ID can be manipulated to achieve remote code execution; the exploit has b...
CVE-2025-4341 D-Link DIR-880L Request Header ssdpcgi sub_16570 command injection
A vulnerability classified as critical was found in D-Link DIR-880L up to 104WWb01. Affected by this vulnerability is the function sub16570 of the file /htdocs/ssdpcgi of the component Request Header Handler. The manipulation of the argument HTTPST/REMOTEADDR/REMOTEPORT/SERVERID leads to command...
CVE-2025-4341 D-Link DIR-880L Request Header ssdpcgi sub_16570 command injection
A vulnerability classified as critical was found in D-Link DIR-880L up to 104WWb01. Affected by this vulnerability is the function sub16570 of the file /htdocs/ssdpcgi of the component Request Header Handler. The manipulation of the argument HTTPST/REMOTEADDR/REMOTEPORT/SERVERID leads to command...
D-Link DIR-880L 安全漏洞
The D-Link DIR-880L is a dual-band Gigabit wireless router from China's AUO D-Link. The D-Link DIR-880L suffers from a command injection vulnerability, which arises from the failure of the file /htdocs/ssdpcgi in the component Request Header Handler to correctly filter the constructed command...
PT-2025-19931 · D Link · D-Link Dir-880L
Name of the Vulnerable Software and Affected Versions: D-Link DIR-880L versions up to 104WWb01 Description: A critical vulnerability was found in the Request Header Handler component, specifically affecting the function sub 16570 of the file /htdocs/ssdpcgi. The manipulation of the argument HTTP...
PT-2023-4468 · D Link · D-Link Dir-880L
Name of the Vulnerable Software and Affected Versions: D-Link DIR-880 A1 FW107WWb08 Description: The issue is related to a NULL pointer dereference in the FUN 00010824 function. This can potentially allow a remote attacker to cause a denial of service. Recommendations: For D-Link DIR-880 A1...
AUO DIR-880L Information Disclosure Vulnerability
The AUO DIR-880L is a wireless AC1900 dual-band Gigabit cloud router. A credential disclosure vulnerability exists in the AUO DIR-880L version 1.07. An attacker can exploit this vulnerability by decompiling the firmware to access the firmware and extract sensitive data...
CVE-2020-29322
The D-Link router DIR-880L 1.07 is vulnerable to credentials disclosure in telnet service through decompilation of firmware, that allows an unauthenticated attacker to gain access to the firmware and to extract sensitive data...
Command injection
The D-Link router DIR-880L 1.07 is vulnerable to credentials disclosure in telnet service through decompilation of firmware, that allows an unauthenticated attacker to gain access to the firmware and to extract sensitive data...
CVE-2020-29322
The CVE-2020-29322 entry concerns the D-Link DIR-880L router; vulnerable component/function: telnet service exposed via firmware decompilation. Root cause: firmware decompilation enables an unauthenticated attacker to gain access to the firmware and extract sensitive data. Reported impact: creden...
CVE-2020-29322
The D-Link router DIR-880L 1.07 is vulnerable to credentials disclosure in telnet service through decompilation of firmware, that allows an unauthenticated attacker to gain access to the firmware and to extract sensitive data...
D-Link DIR-880L 信息泄露漏洞
The AUO DIR-880L is a wireless AC1900 dual-band Gigabit cloud router. A credential disclosure vulnerability exists in the AUO DIR-880L version 1.07. An attacker can exploit this vulnerability by decompiling the firmware to access the firmware and extract sensitive data...
D-Link DIR-880L and DIR-895 L/R Buffer Overflow Vulnerability
The D-Link DIR-880L is a wireless AC1900 dual-band Gigabit cloud router.The D-Link DIR-895 L/R is an AC5300 Wi-Fi tri-band router. A buffer overflow vulnerability exists in the htdocs/fileaccess.cgi component in the D-Link DIR-880L 1.08B04 and DIR-895 L/R 1.13b03. An attacker can exploit this...
CVE-2017-14948
Certain D-Link products are affected by: Buffer Overflow. This affects DIR-880L 1.08B04 and DIR-895 L/R 1.13b03. The impact is: execute arbitrary code remote. The component is: htdocs/fileaccess.cgi. The attack vector is: A crafted HTTP request handled by fileacces.cgi could allow an attacker to...