CVE-2026-8260

A vulnerability was found in D-Link DCS-935L up to 1.10.01. The impacted element is the function SetDeviceSettings of the file /web/cgi-bin/hnap/hnapservice of the component HNAP Service. The manipulation of the argument AdminPassword results in buffer overflow. The attack can be executed remotel...

Exploit for CVE-2026-8260

CVE-2026-8260 Overview A buffer overflow vulnerability af...

EUVD-2026-29016

A vulnerability was found in D-Link DCS-935L up to 1.10.01. The impacted element is the function SetDeviceSettings of the file /web/cgi-bin/hnap/hnapservice of the component HNAP Service. The manipulation of the argument AdminPassword results in buffer overflow. The attack can be executed remotel...

CVE-2026-8260

Technical details about CVE-2026-8260 are not publicly available in the provided documents. Monitor for updates from official advisories. The initial description states the vulnerability exists in D-Link DCS-935L HNAP service SetDeviceSettings buffer overflow.

CVE-2026-8260 D-Link DCS-935L HNAP Service hnap_service SetDeviceSettings buffer overflow

A vulnerability was found in D-Link DCS-935L up to 1.10.01. The impacted element is the function SetDeviceSettings of the file /web/cgi-bin/hnap/hnapservice of the component HNAP Service. The manipulation of the argument AdminPassword results in buffer overflow. The attack can be executed remotel...

D-Link DCS-935L 缓冲区错误漏洞

The D-Link DCS-935L is a router produced by D-Link Corporation. Versions of the D-Link DCS-935L prior to 1.10.01 contain a buffer error vulnerability. This vulnerability stems from the operation of the AdminPassword parameter in the SetDeviceSettings function within the HNAP Service component,...

PT-2025-47527

Name of the Vulnerable Software and Affected Versions D-Link Router DIR-868L version FW106KRb01 Description The D-Link Router DIR-868L version FW106KRb01 contains a remote code execution issue in the cgibin binary. The HNAP service within cgibin does not properly filter the HTTP SOAPAction header...

EUVD-2017-12319

Malware in sbrugna...

EUVD-2020-7618

Malware in sbrugna...

CVE-2024-48168

A stack overflow vulnerability exists in the sub402280 function of the HNAP service of D-Link DCS-960L 1.09, allowing an attacker to execute arbitrary code...

CVE-2024-44589

Stack overflow vulnerability in the Login function in the HNAP service in D-Link DCS-960L with firmware 1.09 allows attackers to execute of arbitrary code...

CVE-2019-17146

This vulnerability allows remote attackers to execute arbitrary code on affected installations of D-Link DCS-960L v1.07.102. Authentication is not required to exploit this vulnerability. The specific flaw exists within the HNAP service, which listens on TCP port 80 by default. When parsing the...

CVE-2020-27864

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1860 firmware version 1.04B03 WiFi extenders. Authentication is not required to exploit this vulnerability. The specific flaw exists within the HNAP service, which listens on TCP...

CVE-2020-15631

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1860 1.04B03HOTFIX WiFi extenders. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw...

CVE-2024-48168

A stack overflow vulnerability exists in the sub402280 function of the HNAP service of D-Link DCS-960L 1.09, allowing an attacker to execute arbitrary code...

CVE-2024-48168

A stack overflow vulnerability exists in the sub402280 function of the HNAP service of D-Link DCS-960L 1.09, allowing an attacker to execute arbitrary code...

CVE-2024-48168

A stack overflow vulnerability exists in the sub402280 function of the HNAP service of D-Link DCS-960L 1.09, allowing an attacker to execute arbitrary code...

CVE-2024-48168

CVE-2024-48168 affects D-Link DCS-960L (firmware 1.09). A stack overflow in the HNAP service, specifically the sub_402280 function, can allow a remote attacker to execute arbitrary code. Exploitation status is not detailed in the provided documents; no in-the-wild exploit link is included. Multip...

CVE-2024-48168

A stack overflow vulnerability exists in the sub402280 function of the HNAP service of D-Link DCS-960L 1.09, allowing an attacker to execute arbitrary code...

Unspecified Vulnerability in D-Link DCS-960L

D-Link DCS-960L is a webcam product from China AUO D-Link. A security vulnerability exists in the D-Link DCS-960L version 1.09, which originates from a flaw in the handling of the login function of the HNAP service and can be exploited by an attacker to execute arbitrary code...