29 matches found
EUVD-2022-46158
Malicious code in bioql PyPI...
EUVD-2021-33128
Malicious code in bioql PyPI...
EUVD-2024-35126
Malicious code in bioql PyPI...
D-Link DIR-823G SetNetworkTomographySettings Function Command Injection Vulnerability
The D-Link DIR-823G is a wireless router from China's AUO D-Link. The D-Link DIR-823G suffers from a command injection vulnerability that stems from the Address parameter in the SetNetworkTomographySettings function failing to properly filter construct command special characters, commands, and so...
CVE-2024-51023
D-Link DIR823G 1.0.2B05 was discovered to contain a command injection vulnerability via the Address parameter in the SetNetworkTomographySettings function. This vulnerability allows attackers to execute arbitrary OS commands via a crafted request...
CVE-2024-51023
CVE-2024-51023 affects D-Link DIR-823G (firmware around 1.0.2B05). A command injection exists in SetNetworkTomographySettings via the Address parameter, allowing an attacker to execute arbitrary OS commands through a crafted request. Public documents confirm the vulnerability details but do not p...
CVE-2024-51023
D-Link DIR823G 1.0.2B05 was discovered to contain a command injection vulnerability via the Address parameter in the SetNetworkTomographySettings function. This vulnerability allows attackers to execute arbitrary OS commands via a crafted request...
CVE-2024-51023
D-Link DIR823G 1.0.2B05 was discovered to contain a command injection vulnerability via the Address parameter in the SetNetworkTomographySettings function. This vulnerability allows attackers to execute arbitrary OS commands via a crafted request...
PT-2024-8244 · D Link · D-Link Dir-823G
Name of the Vulnerable Software and Affected Versions: D-Link DIR 823G version 1.0.2B05 Description: The issue is related to a command injection vulnerability in the SetNetworkTomographySettings function, specifically via the Address parameter. This allows attackers to execute arbitrary OS comman...
D-Link DIR-823G 安全漏洞
The D-Link DIR-823G is a wireless router from China's AUO D-Link. The D-Link DIR-823G suffers from a command injection vulnerability that stems from the Address parameter in the SetNetworkTomographySettings function failing to properly filter construct command special characters, commands, and so...
CVE-2024-34950
D-Link DIR-822+ v1.0.5 was discovered to contain a stack-based buffer overflow vulnerability in the SetNetworkTomographySettings module...
CVE-2024-34950
D-Link DIR-822+ v1.0.5 was discovered to contain a stack-based buffer overflow vulnerability in the SetNetworkTomographySettings module...
CVE-2024-34950
D-Link DIR-822+ v1.0.5 was discovered to contain a stack-based buffer overflow vulnerability in the SetNetworkTomographySettings module...
CVE-2024-34950
The CVE-2024-34950 issue affects D-Link DIR-822+ firmware v1.0.5, with a stack-based buffer overflow in the SetNetworkTomographySettings module. Public sources describe potential impact as DoS (CNNVD), while PT-Security notes remote arbitrary code execution, indicating possible high-risk exposure...
PT-2024-3674 · D Link · D-Link Dir-822
Name of the Vulnerable Software and Affected Versions: D-Link DIR-822+ version 1.0.5 Description: The issue is related to a stack-based buffer overflow vulnerability in the SetNetworkTomographySettings module of the D-Link DIR-822+ wireless router's firmware. This vulnerability can be exploited b...
Command injection
D-Link DIR-823G v1.0.2 was found to contain a command injection vulnerability in the function SetNetworkTomographySettings. This vulnerability allows attackers to execute arbitrary commands via a crafted packet...
CVE-2022-43109
D-Link DIR-823G v1.0.2 was found to contain a command injection vulnerability in the function SetNetworkTomographySettings. This vulnerability allows attackers to execute arbitrary commands via a crafted packet...
CVE-2022-42156
D-Link COVR 1200,1203 v1.08 was discovered to contain a command injection vulnerability via the tomographypingnumber parameter at function SetNetworkTomographySettings...
PT-2022-5278 · D Link · D-Link Covr
Name of the Vulnerable Software and Affected Versions: D-Link COVR versions 1200, 1202, 1203 v1.08 Description: The issue is related to a command injection vulnerability in the SetNetworkTomographySettings function. This vulnerability can be exploited via the tomography ping number parameter,...
CVE-2021-46314
A Remote Command Execution RCE vulnerability exists in HNAP1/control/SetNetworkTomographySettings.php of D-Link Router DIR-846 DIR846A1FW100A43.bin and DIR846enFW100A53DLA-Retail.bin because backticks can be used for command injection when judging whether it is a reasonable domain name...