Lucene search
K

59 matches found

CVE
CVE
added 2024/05/03 2:13 a.m.59 views

CVE-2023-44407

CVE-2023-44407 affects D-Link DAP-1325 routers via the SetAPLanSettings gateway. The vulnerability stems from a stack-based buffer overflow in handling XML data sent to the HNAP1 SOAP endpoint, caused by insufficient validation of user-supplied data length before copying to a fixed-length stack b...

8.8CVSS9AI score0.0075EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/05/03 2:13 a.m.25 views

CVE-2023-44406 D-Link DAP-1325 SetAPLanSettings DeviceName Stack-based Buffer Overflow Remote Code Execution Vulnerability

D-Link DAP-1325 SetAPLanSettings DeviceName Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. Authentication is not required to exploit this...

8.8CVSS7.8AI score0.0075EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/05/03 2:12 a.m.22 views

CVE-2023-41204 D-Link DAP-1325 SetAPLanSettings SecondaryDNS Stack-based Buffer Overflow Remote Code Execution Vulnerability

D-Link DAP-1325 SetAPLanSettings SecondaryDNS Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. Authentication is not required to exploit this...

8.8CVSS7.8AI score0.00855EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/05/03 2:11 a.m.25 views

CVE-2023-41202 D-Link DAP-1325 SetAPLanSettings Mode Stack-based Buffer Overflow Remote Code Execution Vulnerability

D-Link DAP-1325 SetAPLanSettings Mode Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. Authentication is not required to exploit this vulnerability...

8.8CVSS9.2AI score0.00855EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/05/03 2:11 a.m.15 views

CVE-2023-41194 D-Link DAP-1325 HNAP SetAPLanSettings SubnetMask Command Injection Remote Code Execution Vulnerability

D-Link DAP-1325 HNAP SetAPLanSettings SubnetMask Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. Authentication is not required to exploit this vulnerability...

8.8CVSS8AI score0.01187EPSS
Exploits0References2
CVE
CVE
added 2024/05/03 2:11 a.m.94 views

CVE-2023-41194

The CVE-2023-41194 issue affects D-Link DAP-1325 routers, specifically the HNAP SetAPLanSettings endpoint and the SubnetMask parameter. The root cause is insufficient validation of a user-supplied string used in a system call, enabling network-adjacent attackers to execute arbitrary code as root ...

8.8CVSS9.1AI score0.01187EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2024/05/03 2:11 a.m.31 views

CVE-2023-41193 D-Link DAP-1325 HNAP SetAPLanSettings SecondaryDNS Command Injection Remote Code Execution Vulnerability

D-Link DAP-1325 HNAP SetAPLanSettings SecondaryDNS Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. Authentication is not required to exploit this...

8.8CVSS9.3AI score0.01187EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/05/03 2:11 a.m.19 views

CVE-2023-41192 D-Link DAP-1325 HNAP SetAPLanSettings PrimaryDNS Command Injection Remote Code Execution Vulnerability

D-Link DAP-1325 HNAP SetAPLanSettings PrimaryDNS Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. Authentication is not required to exploit this vulnerability...

8.8CVSS8AI score0.01187EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/05/03 2:11 a.m.18 views

CVE-2023-41190 D-Link DAP-1325 HNAP SetAPLanSettings IPAddr Command Injection Remote Code Execution Vulnerability

D-Link DAP-1325 HNAP SetAPLanSettings IPAddr Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. Authentication is not required to exploit this vulnerability. Th...

8.8CVSS8AI score0.01187EPSS
Exploits0References2
CVE
CVE
added 2024/05/03 2:11 a.m.93 views

CVE-2023-41191

CVE-2023-41191 affects D-Link DAP-1325 routers. The flaw is in the HNAP1 SOAP endpoint handling of a request parameter, where insufficient validation allows a network-adjacent attacker to trigger a command injection and execute code with root privileges. This is an unauthenticated remote code exe...

8.8CVSS9.1AI score0.01187EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2024/05/03 2:11 a.m.89 views

CVE-2023-41190

CVE-2023-41190 affects D-Link DAP-1325 routers. The flaw resides in the HNAP1 SOAP endpoint handling of the SetAPLanSettings IPAddr parameter, where unsanitized user input is used to invoke a system call, allowing remote code execution with root privileges for network-adjacent attackers and witho...

8.8CVSS9.1AI score0.01187EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/05/03 2:11 a.m.22 views

CVE-2023-41191 D-Link DAP-1325 HNAP SetAPLanSettings Mode Command Injection Remote Code Execution Vulnerability

D-Link DAP-1325 HNAP SetAPLanSettings Mode Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. Authentication is not required to exploit this vulnerability. The...

8.8CVSS8AI score0.01187EPSS
Exploits0References2
CVE
CVE
added 2024/05/03 2:11 a.m.92 views

CVE-2023-41188

CVE-2023-41188 affects D-Link DAP-1325 routers. The root cause is improper validation of a user-supplied string in the HNAP1 SOAP endpoint’s SetAPLanSettings DeviceName parameter, leading to remote code execution with root privileges. Exploitation requires network adjacency and no authentication....

8.8CVSS9.1AI score0.01187EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2024/05/03 12:0 a.m.4 views

D-Link DAP-1325 安全漏洞

D-Link DAP-1325 is a wireless network extender made by D-Link, which is mainly used to extend the wireless network coverage, support the conversion of wired network and wireless network or connect to different wireless networks. The D-Link DAP-1325 suffers from a stack buffer overflow remote code...

8.8CVSS8.8AI score0.0075EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/05/03 12:0 a.m.4 views

D-Link DAP-1325 安全漏洞

D-Link DAP-1325 is a wireless network extender made by D-Link, which is mainly used to extend the wireless network coverage, support the conversion of wired network and wireless network or connect to different wireless networks. The D-Link DAP-1325 suffers from a stack buffer overflow remote code...

8.8CVSS8.8AI score0.0075EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/05/03 12:0 a.m.4 views

D-Link DAP-1325 安全漏洞

D-Link DAP-1325 is a wireless network extender made by D-Link, which is mainly used to extend the wireless network coverage, support the conversion of wired network and wireless network or connect to different wireless networks. The D-Link DAP-1325 suffers from a command injection remote code...

8.8CVSS9AI score0.01187EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/05/03 12:0 a.m.5 views

D-Link DAP-1325 安全漏洞

D-Link DAP-1325 is a wireless access point/bridge made by D-Link, which is mainly used to extend the wireless network coverage, support the conversion of wired network to wireless network or connect to different wireless networks. The D-Link DAP-1325 suffers from a stack buffer overflow...

8.8CVSS8.6AI score0.00855EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/05/03 12:0 a.m.4 views

D-Link DAP-1325 安全漏洞

The D-Link DAP-1325 is a wireless access point/bridge from China's AUO D-Link that is primarily used to provide wireless network coverage and has a bridging feature that allows you to convert a wired network to a wireless network or connect two wireless networks together. A security vulnerability...

8.8CVSS9.3AI score0.00855EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/05/03 12:0 a.m.5 views

D-Link DAP-1325 安全漏洞

D-Link DAP-1325 is a wireless access point/bridge made by D-Link, which is mainly used to extend the wireless network coverage, support the conversion of wired network to wireless network or connect to different wireless networks. The D-Link DAP-1325 suffers from a command injection vulnerability...

8.8CVSS9AI score0.01187EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/05/03 12:0 a.m.7 views

D-Link DAP-1325 安全漏洞

D-Link DAP-1325 is a wireless access point/bridge made by D-Link, which is mainly used to extend the wireless network coverage, support the conversion of wired network to wireless network or connect different wireless networks. The D-Link DAP-1325 suffers from a stack buffer overflow vulnerabilit...

8.8CVSS8.8AI score0.00855EPSS
Exploits0References3
Rows per page
Query Builder