Lucene search
K

13311 matches found

Debian CVE
Debian CVE
added 2024/05/03 2:13 a.m.54 views

CVE-2023-42116

Exim SMTP Challenge Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Exim. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling o...

9.8CVSS9.4AI score0.03158EPSS
Exploits2
Cvelist
Cvelist
added 2024/05/03 2:12 a.m.25 views

CVE-2023-41228 D-Link DIR-3040 prog.cgi SetUsersSettings Stack-Based Buffer Overflow Remote Code Execution Vulnerability

D-Link DIR-3040 prog.cgi SetUsersSettings Stack-Based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-3040 routers. Authentication is required to exploit this vulnerability...

6.8CVSS7.3AI score0.00705EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/05/03 2:12 a.m.45 views

CVE-2023-41226 D-Link DIR-3040 prog.cgi SetMyDLinkRegistration Stack-Based Buffer Overflow Remote Code Execution Vulnerability

D-Link DIR-3040 prog.cgi SetMyDLinkRegistration Stack-Based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-3040 routers. Authentication is required to exploit this...

6.8CVSS7.3AI score0.00705EPSS
Exploits0References2
CVE
CVE
added 2024/05/03 2:12 a.m.64 views

CVE-2023-41226

Summary of CVE-2023-41226 (D-Link DIR-3040): The vulnerability is a stack-based overflow in the prog.cgi binary that handles HNAP requests to the lighttpd webserver (ports 80/443). Lack of proper validation of a user-supplied string allows a network-adjacent attacker to trigger a remote code exec...

6.8CVSS7.2AI score0.00705EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2024/05/03 2:12 a.m.67 views

CVE-2023-41225

Affected software: D-Link DIR-3040 router. Vulnerability: prog.cgi SetIPv6PppoeSettings handles HNAP requests over the lighttpd webserver and contains a stack-based buffer overflow due to improper validation of a user-supplied string copied into a fixed-size buffer, enabling remote code execution...

6.8CVSS7.2AI score0.00705EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/05/03 2:12 a.m.21 views

CVE-2023-41225 D-Link DIR-3040 prog.cgi SetIPv6PppoeSettings Stack-Based Buffer Overflow Remote Code Execution Vulnerability

D-Link DIR-3040 prog.cgi SetIPv6PppoeSettings Stack-Based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-3040 routers. Authentication is required to exploit this...

6.8CVSS7.8AI score0.00705EPSS
Exploits0References2
CVE
CVE
added 2024/05/03 2:12 a.m.68 views

CVE-2023-41224

The CVE-2023-41224 issue affects D-Link DIR-3040 routers in the prog.cgi SetDeviceSettings path, where a stack-based buffer overflow occurs when handling HNAP requests to the lighttpd webserver on ports 80/443. The root cause is inadequate validation of a user-supplied string copied to a fixed-si...

6.8CVSS7.2AI score0.00705EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2024/05/03 2:12 a.m.77 views

CVE-2023-41221

The CVE-2023-41221 issue affects D-Link DIR-3040 routers, specifically the prog.cgi SetWLanRadioSecurity function. The flaw is a stack-based buffer overflow in the prog.cgi binary that processes HNAP requests for the lighttpd webserver (on TCP ports 80/443). This occurs due to insufficient valida...

6.8CVSS7.2AI score0.00705EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/05/03 2:12 a.m.22 views

CVE-2023-41223 D-Link DIR-3040 prog.cgi SetQuickVPNSettings PSK Stack-Based Buffer Overflow Remote Code Execution Vulnerability

D-Link DIR-3040 prog.cgi SetQuickVPNSettings PSK Stack-Based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-3040 routers. Authentication is required to exploit this...

6.8CVSS7.8AI score0.00705EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/05/03 2:12 a.m.21 views

CVE-2023-41218 D-Link DIR-3040 prog.cgi SetWan3Settings Stack-Based Buffer Overflow Remote Code Execution Vulnerability

D-Link DIR-3040 prog.cgi SetWan3Settings Stack-Based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-3040 routers. Authentication is required to exploit this vulnerability...

6.8CVSS7.8AI score0.00705EPSS
Exploits0References2
CVE
CVE
added 2024/05/03 2:12 a.m.70 views

CVE-2023-41217

CVE-2023-41217 affects D-Link DIR-3040 routers. The vulnerability resides in the prog.cgi handling of HNAP requests to the lighttpd webserver on ports 80/443, where unsafely copied user input into a fixed-length stack buffer leads to a stack-based buffer overflow . This permits remote code execut...

7.1CVSS7.5AI score0.00584EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2024/05/03 2:12 a.m.35 views

CVE-2023-41217 D-Link DIR-3040 prog.cgi SetQuickVPNSettings Password Stack-Based Buffer Overflow Remote Code Execution Vulnerability

D-Link DIR-3040 prog.cgi SetQuickVPNSettings Password Stack-Based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-3040 routers. Authentication is required to exploit this...

7.1CVSS7.6AI score0.00584EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/05/03 2:12 a.m.18 views

CVE-2023-41216 D-Link DIR-3040 prog.cgi SetDynamicDNSSettings Stack-Based Buffer Overflow Remote Code Execution Vulnerability

D-Link DIR-3040 prog.cgi SetDynamicDNSSettings Stack-Based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-3040 routers. Authentication is required to exploit this...

6.8CVSS7.8AI score0.00705EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/05/03 2:12 a.m.30 views

CVE-2023-41215 D-Link DAP-2622 DDP Set Date-Time Stack-based Buffer Overflow Remote Code Execution Vulnerability

D-Link DAP-2622 DDP Set Date-Time Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The...

8.8CVSS9.2AI score0.00872EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/05/03 2:12 a.m.23 views

CVE-2023-41211 D-Link DAP-1325 SetHostIPv6StaticSettings StaticPrefixLength Stack-based Buffer Overflow Remote Code Execution Vulnerability

D-Link DAP-1325 SetHostIPv6StaticSettings StaticPrefixLength Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. Authentication is not required to...

8.8CVSS9.2AI score0.00855EPSS
Exploits0References2
CVE
CVE
added 2024/05/03 2:12 a.m.73 views

CVE-2023-41212

CVE-2023-41212 affects D-Link DAP-1325 routers. The vulnerability is a stack-based buffer overflow in the HNAP1 SOAP endpoint’s handling of XML data, caused by insufficient validation of user-supplied data length before copying to a fixed-size stack buffer. It allows network-adjacent attackers to...

8.8CVSS9AI score0.00855EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/05/03 2:12 a.m.21 views

CVE-2023-41212 D-Link DAP-1325 SetTriggerAPValidate Key Stack-based Buffer Overflow Remote Code Execution Vulnerability

D-Link DAP-1325 SetTriggerAPValidate Key Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. Authentication is not required to exploit this...

8.8CVSS7.8AI score0.00855EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/05/03 2:12 a.m.20 views

CVE-2023-41209 D-Link DAP-1325 SetHostIPv6StaticSettings StaticDNS1 Stack-based Buffer Overflow Remote Code Execution Vulnerability

D-Link DAP-1325 SetHostIPv6StaticSettings StaticDNS1 Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. Authentication is not required to exploit this...

8.8CVSS7.8AI score0.00855EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/05/03 2:12 a.m.28 views

CVE-2023-41208 D-Link DAP-1325 SetHostIPv6StaticSettings StaticDefaultGateway Stack-based Buffer Overflow Remote Code Execution Vulnerability

D-Link DAP-1325 SetHostIPv6StaticSettings StaticDefaultGateway Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. Authentication is not required to...

8.8CVSS7.8AI score0.00855EPSS
Exploits0References2
CVE
CVE
added 2024/05/03 2:12 a.m.67 views

CVE-2023-41208

The CVE concerns D-Link DAP-1325 devices exposing a SetHostIPv6StaticSettings StaticDefaultGateway stack-based buffer overflow in the HNAP1 SOAP endpoint. The root cause is improper validation of the length of user-supplied XML data before copying it into a fixed-size stack buffer, enabling netwo...

8.8CVSS9AI score0.00855EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder