Lucene search
K

75 matches found

NVD
NVD
added 2024/11/05 3:15 p.m.21 views

CVE-2024-51024

D-Link DIR823G 1.0.2B05 was discovered to contain a command injection vulnerability via the HostName parameter in the SetWanSettings function. This vulnerability allows attackers to execute arbitrary OS commands via a crafted request...

8CVSS0.01383EPSS
Exploits0References2
OSV
OSV
added 2024/11/05 3:15 p.m.7 views

CVE-2024-51024

D-Link DIR823G 1.0.2B05 was discovered to contain a command injection vulnerability via the HostName parameter in the SetWanSettings function. This vulnerability allows attackers to execute arbitrary OS commands via a crafted request...

8CVSS6AI score0.01383EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/11/05 12:0 a.m.4 views

D-Link DIR-823G 安全漏洞

The D-Link DIR-823G is a wireless router from China's AUO D-Link. The D-Link DIR-823G version 1.0.2B05 suffers from a command injection vulnerability that stems from the HostName parameter in the SetWanSettings function failing to properly filter constructed command special characters, commands,...

8CVSS8.2AI score0.01383EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/11/05 12:0 a.m.14 views

CVE-2024-51024

D-Link DIR823G 1.0.2B05 was discovered to contain a command injection vulnerability via the HostName parameter in the SetWanSettings function. This vulnerability allows attackers to execute arbitrary OS commands via a crafted request...

8.6AI score0.01383EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/11/05 12:0 a.m.19 views

CVE-2024-51024

D-Link DIR823G 1.0.2B05 was discovered to contain a command injection vulnerability via the HostName parameter in the SetWanSettings function. This vulnerability allows attackers to execute arbitrary OS commands via a crafted request...

0.01383EPSS
Exploits0References2
CVE
CVE
added 2024/11/05 12:0 a.m.67 views

CVE-2024-51024

The CVE-2024-51024 entry concerns the D-Link DIR-823G router, firmware 1.0.2B05. The SetWanSettings function’s HostName parameter can be exploited to inject arbitrary OS commands, enabling remote command execution. Affected component: SetWanSettings handling of HostName; root cause: lack of prope...

8CVSS8.3AI score0.01383EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2024/05/03 3:16 a.m.6 views

CVE-2023-51617

D-Link DIR-X3260 prog.cgi SetWanSettings Stack-Based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-X3260 routers. Authentication is required to exploit this vulnerability...

6.8CVSS6.4AI score0.01126EPSS
Exploits0References2
OSV
OSV
added 2024/05/03 3:15 a.m.3 views

CVE-2023-41219

D-Link DIR-3040 prog.cgi SetWanSettings Stack-Based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-3040 routers. Authentication is required to exploit this vulnerability. T...

6.8CVSS6.3AI score0.00705EPSS
Exploits0References2
CVE
CVE
added 2024/05/03 2:15 a.m.76 views

CVE-2023-51617

CVE-2023-51617 affects the D-Link DIR-X3260 router, specifically the prog.cgi SetWanSettings handler. The flaw is a stack-based buffer overflow in the lighttpd/HNAP flow where an unchecked user string is copied into a fixed-length stack buffer, enabling code execution with root privileges. Attack...

6.8CVSS7.2AI score0.01126EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2024/05/03 2:15 a.m.37 views

CVE-2023-51617 D-Link DIR-X3260 prog.cgi SetWanSettings Stack-Based Buffer Overflow Remote Code Execution Vulnerability

D-Link DIR-X3260 prog.cgi SetWanSettings Stack-Based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-X3260 routers. Authentication is required to exploit this vulnerability...

6.8CVSS7.3AI score0.01126EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/05/03 2:15 a.m.32 views

CVE-2023-51617 D-Link DIR-X3260 prog.cgi SetWanSettings Stack-Based Buffer Overflow Remote Code Execution Vulnerability

D-Link DIR-X3260 prog.cgi SetWanSettings Stack-Based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-X3260 routers. Authentication is required to exploit this vulnerability...

6.8CVSS7.8AI score0.01126EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/05/03 2:12 a.m.22 views

CVE-2023-41219 D-Link DIR-3040 prog.cgi SetWanSettings Stack-Based Buffer Overflow Remote Code Execution Vulnerability

D-Link DIR-3040 prog.cgi SetWanSettings Stack-Based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-3040 routers. Authentication is required to exploit this vulnerability. T...

6.8CVSS7.8AI score0.00705EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/05/03 12:0 a.m.6 views

D-Link DIR-3040 安全漏洞

The D-Link DIR-3040 is a router from China-based AUO D-Link. It provides the function of connecting to a network. A security vulnerability exists in the D-Link DIR-3040 that stems from a stack-based buffer overflow remote code execution vulnerability in prog.cgi SetWanSettings...

6.8CVSS7.3AI score0.00705EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2023/10/10 12:0 a.m.5 views

The vulnerability of the SetWanSettings() function in D-Link DIR-3040 wireless router software allows a hacker to execute arbitrary code.

The vulnerability of the SetWanSettings function in D-Link DIR-3040 wireless router software lies in the fact that the operation’s output escapes the buffer in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by sending specially crafted HNAP requests to TC...

7.7CVSS7.4AI score0.00705EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2023/10/10 12:0 a.m.5 views

The vulnerability of the SetWanSettings function in D-Link DIR-823G router software allows a hacker to induce a service failure.

The vulnerability of the SetWanSettings function in D-Link DIR-823G router microprogramming software is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability can allow a remote attacker to cause a service failure...

7.8CVSS7.2AI score0.00865EPSS
Exploits1References3Affected Software1
CNVD
CNVD
added 2023/10/09 12:0 a.m.6 views

D-Link DIR-823G Password Parameter Buffer Overflow Vulnerability

The D-Link DIR-823G is a wireless router from China's AUO D-Link. A buffer overflow vulnerability exists in the D-Link DIR-823G Password parameter due to incorrect boundary checking in the SetWanSettings function. An attacker could exploit this vulnerability to cause a denial of service...

7.5CVSS7.1AI score0.00865EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2023/10/09 12:0 a.m.6 views

The vulnerability of the SetWanSettings() function in D-Link DIR-823G router software allows a hacker to cause a service failure.

The vulnerability of the SetWanSettings function in the microprogramming software for D–Link DIR-823G routers is related to the issue where the operation’s output escapes the buffer in memory when processing the MacAddress parameter. Exploiting this vulnerability can allow a remote attacker to...

7.8CVSS7.6AI score0.00832EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2023/10/05 4:15 p.m.21 views

CVE-2023-44837

D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow via the Password parameter in the SetWanSettings function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted input...

7.5CVSS7.6AI score0.00865EPSS
Exploits1References2
NVD
NVD
added 2023/10/05 4:15 p.m.23 views

CVE-2023-44832

D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow via the MacAddress parameter in the SetWanSettings function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted input...

7.5CVSS7.6AI score0.00832EPSS
Exploits1References2
Prion
Prion
added 2023/10/05 4:15 p.m.16 views

Buffer overflow

D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow via the Password parameter in the SetWanSettings function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted input...

5CVSS7.5AI score0.00865EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder