Lucene search
K

30 matches found

NVD
NVD
added 2022/02/17 9:15 p.m.15 views

CVE-2021-46314

A Remote Command Execution RCE vulnerability exists in HNAP1/control/SetNetworkTomographySettings.php of D-Link Router DIR-846 DIR846A1FW100A43.bin and DIR846enFW100A53DLA-Retail.bin because backticks can be used for command injection when judging whether it is a reasonable domain name...

9.8CVSS0.33287EPSS
Exploits1References2
Prion
Prion
added 2022/02/17 9:15 p.m.16 views

Command injection

A Remote Command Execution RCE vulnerability exists in HNAP1/control/SetNetworkTomographySettings.php of D-Link Router DIR-846 DIR846A1FW100A43.bin and DIR846enFW100A53DLA-Retail.bin because backticks can be used for command injection when judging whether it is a reasonable domain name...

7.5CVSS9.9AI score0.33287EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2022/02/04 2:15 a.m.9 views

CVE-2021-46452

D-Link device D-Link DIR-823-Pro v1.0.2 was discovered to contain a command injection vulnerability in the function SetNetworkTomographySettings. This vulnerability allows attackers to execute arbitrary commands via the tomographypingaddress, tomographypingnumber, tomographypingsize,...

9.8CVSS6AI score0.0385EPSS
Exploits0References3
NVD
NVD
added 2022/02/04 2:15 a.m.31 views

CVE-2021-46452

D-Link device D-Link DIR-823-Pro v1.0.2 was discovered to contain a command injection vulnerability in the function SetNetworkTomographySettings. This vulnerability allows attackers to execute arbitrary commands via the tomographypingaddress, tomographypingnumber, tomographypingsize,...

9.8CVSS0.0385EPSS
Exploits0References3
Prion
Prion
added 2022/02/04 2:15 a.m.15 views

Command injection

D-Link device D-Link DIR-823-Pro v1.0.2 was discovered to contain a command injection vulnerability in the function SetNetworkTomographySettings. This vulnerability allows attackers to execute arbitrary commands via the tomographypingaddress, tomographypingnumber, tomographypingsize,...

7.5CVSS9.9AI score0.0385EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2022/02/04 1:33 a.m.34 views

CVE-2021-46452

D-Link device D-Link DIR-823-Pro v1.0.2 was discovered to contain a command injection vulnerability in the function SetNetworkTomographySettings. This vulnerability allows attackers to execute arbitrary commands via the tomographypingaddress, tomographypingnumber, tomographypingsize,...

10AI score0.0385EPSS
Exploits0References3
CNVD
CNVD
added 2018/09/04 12:0 a.m.2 views

D-Link DIR-846 Remote Code Execution Vulnerability

D-Link DIR-846 is a wireless router product from AUO D-Link. A remote code execution vulnerability exists in the D-Link DIR-846 with firmware version 100.26, which can be exploited by remote attackers with administrator access to execute arbitrary code as root by sending a...

9CVSS7.8AI score0.04691EPSS
Exploits1References1
NVD
NVD
added 2018/09/03 7:29 p.m.29 views

CVE-2018-16408

D-Link DIR-846 devices with firmware 100.26 allow remote attackers to execute arbitrary code as root via a SetNetworkTomographySettings request by leveraging admin access...

9CVSS7.4AI score0.04691EPSS
Exploits1References3
OSV
OSV
added 2018/09/03 7:29 p.m.5 views

CVE-2018-16408

D-Link DIR-846 devices with firmware 100.26 allow remote attackers to execute arbitrary code as root via a SetNetworkTomographySettings request by leveraging admin access...

7.2CVSS6.1AI score0.04691EPSS
Exploits1References3
Cvelist
Cvelist
added 2018/09/03 7:0 p.m.21 views

CVE-2018-16408

D-Link DIR-846 devices with firmware 100.26 allow remote attackers to execute arbitrary code as root via a SetNetworkTomographySettings request by leveraging admin access...

7.5AI score0.04691EPSS
Exploits1References1
Rows per page
Query Builder