Lucene search
K

896 matches found

Cvelist
Cvelist
added 2026/05/04 3:53 p.m.38 views

CVE-2026-42372 D-Link DIR-605L A1 Hardcoded Telnet Backdoor Credentials

D-Link DIR-605L Hardware Revision A1 End-of-Life, EOL contains a hardcoded telnet backdoor. The device starts a telnet daemon at boot via /bin/telnetd.sh with the username "Alphanetworks" and the static password "wrgn35dlwbrdir605l" read from /etc/alphaconfig/imagesign. The custom telnetd binary...

8.8CVSS0.003EPSS
Exploits1References1
CVE
CVE
added 2026/04/28 8:30 a.m.14 views

CVE-2026-7247

CVE-2026-7247 affects D-Link DI-8100 firmware 16.07.26A1. The vulnerability is in the File Extension Handler’s file_exten.asp, specifically the function file_exten_asp, where manipulation of the Name argument causes a buffer overflow. This enables remote exploitation, with the exploit disclosed p...

8.6CVSS7.4AI score0.00717EPSS
Exploits1References5Affected Software1
Positive Technologies
Positive Technologies
added 2026/04/28 12:0 a.m.6 views

PT-2026-35742

A vulnerability has been found in D-Link DIR-825M 1.1.12. This vulnerability affects the function sub 4151FC of the file /boafrm/formVpnConfigSetup. The manipulation of the argument submit-url leads to buffer overflow. Remote exploitation of the attack is possible. The exploit has been disclosed ...

9CVSS8.3AI score0.0069EPSS
Exploits1References8
RedhatCVE
RedhatCVE
added 2026/04/27 7:23 p.m.4 views

CVE-2026-7027

A vulnerability was identified in D-Link DSL-2740R EU01.15. Impacted is an unknown function of the component Wireless Setup Section. Such manipulation of the argument Wireless Network Name leads to cross site scripting. The attack can be executed remotely. The exploit is publicly available and...

4.8CVSS2.9AI score0.00433EPSS
Exploits0References1
NVD
NVD
added 2026/04/27 12:16 a.m.9 views

CVE-2026-7069

A security flaw has been discovered in D-Link DIR-825 up to 3.00b32. This impacts the function AddPortMapping of the file upnpsoap.c of the component miniupnpd. Performing a manipulation of the argument NewPortMappingDescription results in buffer overflow. The attack needs to be approached within...

8.6CVSS0.01384EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2026/04/26 11:45 p.m.2 views

CVE-2026-7068 D-Link DIR-825 nmbd sserver.c NMBD_process buffer overflow

A vulnerability was identified in D-Link DIR-825 3.00b32. This affects the function NMBDprocess of the file sserver.c of the component nmbd. Such manipulation leads to buffer overflow. The attack can only be initiated within the local network. The exploit is publicly available and might be used...

8.8CVSS8.5AI score0.01871EPSS
Exploits1References5
EUVD
EUVD
added 2026/04/26 7:15 a.m.5 views

EUVD-2026-25701

A vulnerability was determined in D-Link DGS-3420 1.50.018. This issue affects some unknown processing of the component System Information Settings Page. This manipulation of the argument System Name causes cross site scripting. Remote exploitation of the attack is possible. The exploit has been...

6.8CVSS3.8AI score0.00556EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/22 12:0 a.m.5 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013817)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013817 advisory. In the Linux kernel, the following vulnerability has been resolved: net: dlink: handle copythresh allocation failure The driver did not handle failure of...

5.3AI score0.00202EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.5 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-011077)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-011077 advisory. In the Linux kernel, the following vulnerability has been resolved: net: dlink: handle copythresh allocation failure The driver did not handle failure of...

5.6AI score0.00202EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/04/20 12:0 a.m.21 views

PT-2026-36836

Name of the Vulnerable Software and Affected Versions D-Link DIR-600L Hardware Revision A1 Description A hardcoded telnet backdoor exists in the device. At boot, the device starts a telnet daemon via the /bin/telnetd.sh script using the username "Alphanetworks" and a static password "wrgn35 dlwbr...

9.8CVSS5.8AI score0.00472EPSS
Exploits1References11
CNVD
CNVD
added 2026/04/16 12:0 a.m.5 views

D-Link DI-8003 Buffer Overflow Vulnerability (CNVD-2026-17630)

The D-Link DI-8003 is a wireless router from China-based AUO D-Link. A buffer overflow vulnerability exists in the D-Link DI-8003. The vulnerability is caused due to improper handling of the id parameter in the /saveparmusb.asp endpoint and can be exploited by an attacker to cause a denial of...

7.5CVSS6AI score0.00467EPSS
Exploits0
CNVD
CNVD
added 2026/04/16 12:0 a.m.2 views

D-Link DI-8003 Buffer Overflow Vulnerability (CNVD-2026-17657)

The D-Link DI-8003 is a wireless router from China-based AUO D-Link. A buffer overflow vulnerability exists in the D-Link DI-8003. The vulnerability is caused due to incorrect parameter boundary checking in the /yyxzdlink.asp endpoint and can be exploited by an attacker to cause a denial of servi...

7.5CVSS6AI score0.00412EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/04/14 1:22 a.m.5 views

CVE-2026-5981

A vulnerability has been found in D-Link DIR-605L 2.13B01. This affects the function formAdvFirewall of the file /goform/formAdvFirewall of the component POST Request Handler. Such manipulation of the argument curTime leads to buffer overflow. The attack may be launched remotely. The exploit has...

9CVSS6.2AI score0.00715EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/04/10 7:22 p.m.3 views

CVE-2025-50659

A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of the customerror parameter in the /user.asp endpoint...

7.5CVSS6AI score0.00516EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/04/10 7:22 p.m.6 views

CVE-2025-50672

A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of parameters in the /yyxzdlink.asp endpoint...

7.5CVSS6AI score0.00412EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/04/10 7:22 p.m.5 views

CVE-2025-50650

A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to inadequate validation of input size in the routesstatic parameter in the /router.asp endpoint...

7.5CVSS6AI score0.00516EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/04/10 4:0 a.m.2 views

CVE-2026-6012 D-Link DIR-513 POST Request formSetPassword buffer overflow

A security vulnerability has been detected in D-Link DIR-513 1.10. This affects the function formSetPassword of the file /goform/formSetPassword of the component POST Request Handler. The manipulation of the argument curTime leads to buffer overflow. The attack is possible to be carried out...

9CVSS7.7AI score0.00715EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2026/04/10 1:22 a.m.4 views

CVE-2025-45057

D-Link DI-8300 v16.07.26A1 was discovered to contain a buffer overflow via the ip parameter in the ippositionasp function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted input...

7.5CVSS6.2AI score0.00395EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/04/10 1:22 a.m.9 views

CVE-2025-45058

D-Link DI-8300 v16.07.26A1 was discovered to contain a buffer overflow via the fx parameter in the jingxasp function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted input...

7.5CVSS6.2AI score0.00395EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/09 9:30 p.m.22 views

CVE-2026-5982 D-Link DIR-605L POST Request formAdvNetwork buffer overflow

A vulnerability was found in D-Link DIR-605L 2.13B01. This vulnerability affects the function formAdvNetwork of the file /goform/formAdvNetwork of the component POST Request Handler. Performing a manipulation of the argument curTime results in buffer overflow. Remote exploitation of the attack is...

9CVSS0.0069EPSS
Exploits1References5
Rows per page
Query Builder