14 matches found
EUVD-2021-29740
Malicious code in bioql PyPI...
EUVD-2021-29739
Malicious code in bioql PyPI...
D-Link DWR-932C E1 has unspecified vulnerabilities
The D-Link Dwr-932C E1 is a WiFi mobile modem router from D-Link, a Chinese company. A security vulnerability exists in the D-Link DWR-932C E1 firmware, stemming from a lack of critical function authentication in post set.cgi, which could be exploited by attackers to perform administrative action...
D-Link DWR-932C E1 Command Injection Vulnerability
The D-Link Dwr-932C E1 is a WiFi mobile modem router from China-based D-Link.A security vulnerability exists in the D-Link DWR-932C E1 firmware, which stems from an OS command injection in debugfcgi. An attacker could exploit this vulnerability to perform command injection via a crafted HTTP...
The vulnerability of the debug_fcgid component in the D-Link DWR-932C E1 router microprogramming software allows a hacker to execute arbitrary commands.
The vulnerability of the debugfcgid component in the D-Link DWR-932C E1 router microprogramming software is related to the failure to take measures to neutralize special elements used in the operating system commands. Exploiting this vulnerability allows a malicious actor to execute arbitrary...
CVE-2021-42783
Missing Authentication for Critical Function vulnerability in debugpostset.cgi of D-Link DWR-932C E1 firmware allows an unauthenticated attacker to execute administrative actions...
CVE-2021-42784
OS Command Injection vulnerability in debugfcgi of D-Link DWR-932C E1 firmware allows a remote attacker to perform command injection via a crafted HTTP request...
CVE-2021-42784
OS Command Injection vulnerability in debugfcgi of D-Link DWR-932C E1 firmware allows a remote attacker to perform command injection via a crafted HTTP request...
Authentication flaw
Missing Authentication for Critical Function vulnerability in debugpostset.cgi of D-Link DWR-932C E1 firmware allows an unauthenticated attacker to execute administrative actions...
Command injection
OS Command Injection vulnerability in debugfcgi of D-Link DWR-932C E1 firmware allows a remote attacker to perform command injection via a crafted HTTP request...
CVE-2021-42783
The CVE-2021-42783 issue affects the D-Link DWR-932C E1 firmware, where a Missing Authentication for Critical Function in debug_post_set.cgi enables an unauthenticated attacker to perform administrative actions. The vulnerability is documented with a high-severity CVSS score (3.1: 9.8; 2.0: 10.0)...
CVE-2021-42784
CVE-2021-42784 describes an OS command injection in the debug_fcgi component of the D-Link DWR-932C E1 firmware. A remote attacker could exploit a crafted HTTP request to execute commands on the device, with high impact across confidentiality, integrity, and availability per CVSS 3.1/3.0 scores i...
CVE-2021-42784 OS Command Injection in debug_fcgi in D-Link DWR-932C E1 Firmware 1.0.0.4
OS Command Injection vulnerability in debugfcgi of D-Link DWR-932C E1 firmware allows a remote attacker to perform command injection via a crafted HTTP request...
D-Link Dwr-932C E1 访问控制错误漏洞
The D-Link Dwr-932C E1 is a WiFi mobile modem router from D-Link, a Chinese company. A security vulnerability exists in the D-Link DWR-932C E1 firmware, stemming from a lack of critical function authentication in post set.cgi, which could be exploited by attackers to perform administrative action...