Lucene search
K

2267 matches found

ATTACKERKB
ATTACKERKB
added 2026/05/28 9:2 a.m.21 views

CVE-2026-4377

Dlink DWR-X1820 router uses weak default password generated from its IMEI number and does not require users to change it. An attacker who knows how passwords are generated can easily crack the default password if they have the device IMEI number. This issue was fixed in version 1.00B16CP...

6CVSS5.8AI score0.00141EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2026/05/28 12:0 a.m.12 views

D-Link DWR-X1820 安全漏洞

The D-Link DWR-X1820 is a wireless router produced by D-Link Corporation. The D-Link DWR-X1820 has a security vulnerability. This vulnerability stems from the use of weak default passwords generated from the IMEI number, and no requirement is placed on users to change them. As a result, attackers...

6CVSS5.8AI score0.00141EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/05/27 8:55 a.m.28 views

Important: Red Hat Security Advisory: OpenShift Container Platform 4.19.32 security and extras update

Red Hat OpenShift Container Platform release 4.19.32 is now available with updates to packages and images that fix several bugs. This release includes a security update for Red Hat OpenShift Container Platform 4.19. Red Hat Product Security has rated this update as having a security impact of...

9.8CVSS6.9AI score0.01735EPSS
Exploits3References9
CNNVD
CNNVD
added 2026/05/25 12:0 a.m.13 views

Edimax BR-6478AC 命令注入漏洞

Edimax BR-6478AC is a dual-band Gigabit router from China Xunzhou Edimax. Edimax BR-6478AC version 1.23 suffers from a command injection vulnerability, which originates from the operation of the function formiNICbasic in the file /goform/formiNICbasic in the POST Request Handler component, on the...

6.5CVSS6.7AI score0.0135EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/25 12:0 a.m.10 views

Edimax BR-6478AC 安全漏洞

Edimax BR-6478AC is a dual-band Gigabit router from China Xunzhou Edimax. A security vulnerability exists in Edimax BR-6478AC version 1.23, which originates from the operation of the function formL2TPSetup in the file /goform/formL2TPSetup in the POST Request Handler component/goform/formL2TPSetu...

9CVSS7.8AI score0.00589EPSS
Exploits0References4
NVD
NVD
added 2026/05/24 2:16 a.m.19 views

CVE-2026-9345

A vulnerability was detected in Edimax EW-7438RPn up to 1.31. This affects the function formWizSurvey of the file /goform/formWizSurvey of the component webs. Performing a manipulation of the argument ssid/manualssid/ip/mask/gateway results in buffer overflow. The attack is possible to be carried...

9CVSS0.00542EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/05/24 12:0 a.m.12 views

Edimax BR-6675nD 命令注入漏洞

The Edimax BR-6675nD is a dual-band broadband wireless router produced by Edimax Corporation. Version 1.12 of the Edimax BR-6675nD contains a command injection vulnerability. This vulnerability stems from improper handling of parameters such as...

6.5CVSS6.7AI score0.01171EPSS
Exploits0References4
EUVD
EUVD
added 2026/05/13 6:30 p.m.14 views

EUVD-2026-30044

U-SPEED AC1200 Gigabit Wi-Fi Router Model: T18-21K V1.0 is vulnerable to Command Injection. The Network Time Protocol NTP configuration interface does not properly sanitize user-supplied input. An authenticated user with permission to configure NTP settings can inject arbitrary system commands...

6AI score0.0209EPSS
Exploits1References3
EUVD
EUVD
added 2026/05/13 6:30 p.m.13 views

EUVD-2020-31221

Huawei HG630 V2 router contains an authentication bypass vulnerability that allows unauthenticated attackers to obtain administrative access by retrieving the device serial number. Attackers can query the /api/system/deviceinfo endpoint without authentication to extract the SerialNumber field, th...

8.7CVSS5.8AI score0.00356EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/05/13 12:0 a.m.10 views

CVE-2026-36741

U-SPEED AC1200 Gigabit Wi-Fi Router Model: T18-21K V1.0 is vulnerable to Command Injection. The Network Time Protocol NTP configuration interface does not properly sanitize user-supplied input. An authenticated user with permission to configure NTP settings can inject arbitrary system commands...

6AI score0.0209EPSS
Exploits1References2
CNNVD
CNNVD
added 2026/05/13 12:0 a.m.9 views

U-SPEED AC1200 安全漏洞

The U-SPEED AC1200 is a Gigabit dual-band Wi-Fi router produced by the U-SPEED company. The U-SPEED AC1200 T18-21K V1.0 version contains a security vulnerability. This vulnerability arises from the incorrect handling of user input in the NTP configuration interface. As a result, authenticated use...

7.2CVSS5.9AI score0.0209EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2026/05/13 12:0 a.m.12 views

CVE-2026-36741

U-SPEED AC1200 Gigabit Wi-Fi Router Model: T18-21K V1.0 is vulnerable to Command Injection. The Network Time Protocol NTP configuration interface does not properly sanitize user-supplied input. An authenticated user with permission to configure NTP settings can inject arbitrary system commands...

6AI score0.0209EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2026/05/13 12:0 a.m.18 views

PT-2026-40706

Name of the Vulnerable Software and Affected Versions U-SPEED AC1200 Gigabit Wi-Fi Router Model: T18-21K version 1.0 Description The Network Time Protocol NTP configuration interface fails to properly sanitize user-supplied input. An authenticated user with permissions to modify NTP settings can...

7.2CVSS6.2AI score0.0209EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2026/05/11 9:30 p.m.8 views

CVE-2026-8344 D-Link DIR-816 formDMZ.cgi sub_445E7C command injection

A weakness has been identified in D-Link DIR-816 1.10CNB05R1B011D88210. Affected by this vulnerability is the function sub445E7C of the file /goform/formDMZ.cgi. This manipulation causes command injection. It is possible to initiate the attack remotely. The exploit has been made available to the...

6.5CVSS6.4AI score0.03156EPSS
Exploits1References5
CNNVD
CNNVD
added 2026/05/11 12:0 a.m.9 views

D-Link DIR-816 注入漏洞

The D-Link DIR-816 is a wireless router produced by D-Link Corporation. The version 1.10CNB05R1B011D88210 of the D-Link DIR-816 has a vulnerability related to command injection. This vulnerability stems from the operation of the sub445E7C function in the /goform/singlePortForward file, which...

8.8CVSS6.6AI score0.03156EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/05/11 12:0 a.m.9 views

Tenda AC6 命令注入漏洞

Tenda AC6 is a wireless router produced by the Chinese company Tenda. The version Tenda AC6 2.0/15.03.06.23 contains a command injection vulnerability. This vulnerability stems from an unknown function in the httpd component’s file/goform/telnet, which manipulates the parameter lan.ip, potentiall...

7.2CVSS5.8AI score0.04447EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/05/08 12:0 a.m.10 views

Tenda CX12L 缓冲区错误漏洞

The Tenda CX12L is a home-use wireless router device from the Chinese company Tenda. The version 16.03.53.12 of the Tenda CX12L contains a buffer error vulnerability. This vulnerability stems from improper operation of the function in the file/goform/SetPptpServerCfg, which may lead to a stack...

9CVSS7.7AI score0.00568EPSS
Exploits1References1
NVD
NVD
added 2026/05/07 6:16 p.m.14 views

CVE-2026-8081

A vulnerability has been found in router-for-me CLIProxyAPI 6.9.29. Affected by this issue is some unknown functionality of the file internal/api/handlers/management/apitools.go of the component API Interface. The manipulation of the argument url leads to server-side request forgery. Remote...

6.5CVSS0.00215EPSS
Exploits0References4
EUVD
EUVD
added 2026/05/07 2:20 a.m.10 views

EUVD-2026-28237

Tor before 0.4.9.7 mishandles accounting of the conflux out-of-order queue during the clearing of a queue, aka TROVE-2026-010...

5.3CVSS5.8AI score0.00378EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/05 12:0 a.m.10 views

D-Link DI-8100 缓冲区错误漏洞

The D-Link DI-8100 is a wireless broadband router designed for small and medium-sized network environments by D-Link Corporation. The D-Link DI-8100 version 16.07.26A1 contains a buffer overflow vulnerability. This vulnerability stems from the function sprintf in the HTTP Handler component, where...

10CVSS7.6AI score0.01515EPSS
Exploits1References1
Rows per page
Query Builder