Lucene search
K

5 matches found

BDU FSTEC
BDU FSTEC
added 2023/05/10 12:0 a.m.5 views

The vulnerability in the phpcgi.py script of the D-Link DIR-890L A1 router’s microprogramming software allows a hacker to bypass security restrictions and restore user credentials for accessing the system.

The vulnerability of the phpcgi.py script in the D-Link DIR-890L A1 router microprogramming system is related to deficiencies in authentication procedures. Exploiting this vulnerability allows a malicious actor to bypass security restrictions and restore access credentials to gain entry into the...

7.8CVSS6.8AI score0.01112EPSS
Exploits1References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/07/04 12:0 a.m.8 views

The vulnerability in the implementation of the sprintf() function in the microprogramming software for DIR-890L A1 allows a hacker to execute arbitrary code.

The vulnerability of the sprintf function implementation in the microprogramming-based router software DIR-890L A1 is related to incorrect checking of string lengths in HTTP headers. Exploiting this vulnerability could allow an attacker to execute arbitrary code by connecting through port 49152...

6.3CVSS7.4AI score0.13638EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2019/11/11 2:15 p.m.6 views

CVE-2019-18852

Certain D-Link devices have a hardcoded Alphanetworks user account with TELNET access because of /etc/config/imagesign or /etc/alphaconfig/imagesign. This affects DIR-600 B1 V2.01 for WW, DIR-890L A1 v1.03, DIR-615 J1 v100 for DCN, DIR-645 A1 v1.03, DIR-815 A1 v1.01, DIR-823 A1 v1.01, and DIR-842...

9.8CVSS7.3AI score0.01541EPSS
Exploits1References1
NVD
NVD
added 2019/11/11 2:15 p.m.22 views

CVE-2019-18852

Certain D-Link devices have a hardcoded Alphanetworks user account with TELNET access because of /etc/config/imagesign or /etc/alphaconfig/imagesign. This affects DIR-600 B1 V2.01 for WW, DIR-890L A1 v1.03, DIR-615 J1 v100 for DCN, DIR-645 A1 v1.03, DIR-815 A1 v1.01, DIR-823 A1 v1.01, and DIR-842...

10CVSS9.6AI score0.01541EPSS
Exploits1References1
NVD
NVD
added 2016/08/25 9:59 p.m.19 views

CVE-2016-5681

Stack-based buffer overflow in dws/api/Login on D-Link DIR-850L B1 2.07 before 2.07WWB05, DIR-817 Ax, DIR-818LW Bx before 2.05b03beta03, DIR-822 C1 3.01 before 3.01WWb02, DIR-823 A1 1.00 before 1.00WWb05, DIR-895L A1 1.11 before 1.11WWb04, DIR-890L A1 1.09 before 1.09b14, DIR-885L A1 1.11 before...

9.8CVSS9.9AI score0.11927EPSS
Exploits0References3
Rows per page
Query Builder