CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2 matches found

CVE•added 2025/10/21 12:0 a.m.•10 views

CVE-2025-60344

CVE-2025-60344 describes an unauthenticated Local File Inclusion (LFI) vulnerability in D-Link DSR series routers. Affected models include DSR-150, DSR-150N, and DSR-250N v1.09B32_WW. The issue allows remote attackers to read sensitive configuration files in clear text, exposing administrative cr...

8.6CVSS6AI score0.00158EPSS

Exploits0References2

CVE•added 2025/01/28 12:0 a.m.•56 views

CVE-2024-57376

CVE-2024-57376 affects D-Link DSR-150, DSR-150N, DSR-250, DSR-250N, DSR-500N, and DSR-1000N with firmware versions 3.13–3.17B901C. The root cause is a buffer overflow in the CGI logout handling path triggered via extCpResult passed to captivePortalLib.duaLogoutInfoGet, using strcpy on user input,...

8.8CVSS8.3AI score0.53773EPSS

Exploits1References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by