Lucene search
K

365 matches found

CNVD
CNVD
added 2025/07/04 12:0 a.m.4 views

D-Link DIR-816 A2 Code Execution Vulnerability

The D-Link DIR-816 A2 is a wireless router from China's AUO D-Link. The D-Link DIR-816 A2 suffers from a code execution vulnerability that originates from an unverified system function in the bin/goahead file, which can be exploited by an attacker to cause remote code execution...

9.8CVSS8.5AI score0.01307EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/07/02 12:16 a.m.15 views

CVE-2025-45931

An issue D-Link DIR-816-A2 DIR-816A2FWv1.10CNB05R1B011D88210 allows a remote attacker to execute arbitrary code via system function in the bin/goahead file...

9.8CVSS8.2AI score0.01307EPSS
Exploits1References1
NVD
NVD
added 2025/06/30 5:15 p.m.4 views

CVE-2025-45931

An issue D-Link DIR-816-A2 DIR-816A2FWv1.10CNB05R1B011D88210 allows a remote attacker to execute arbitrary code via system function in the bin/goahead file...

9.8CVSS0.01307EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2025/06/30 12:0 a.m.8 views

PT-2025-27456 · D Link · D-Link Dir-816 A2

Name of the Vulnerable Software and Affected Versions: D-Link DIR-816-A2 version DIR-816A2 FWv1.10CNB05 R1B011D88210 Description: An issue in the D-Link DIR-816-A2 allows a remote attacker to execute arbitrary code via the system function in the bin/goahead file. This enables the attacker to run...

9.8CVSS8.2AI score0.01307EPSS
Exploits1References11
Vulnrichment
Vulnrichment
added 2025/06/30 12:0 a.m.3 views

CVE-2025-45931

An issue D-Link DIR-816-A2 DIR-816A2FWv1.10CNB05R1B011D88210 allows a remote attacker to execute arbitrary code via system function in the bin/goahead file...

7.5AI score0.01307EPSS
Exploits1References4
CNNVD
CNNVD
added 2025/06/30 12:0 a.m.5 views

D-Link DIR-816 A2 安全漏洞

The D-Link DIR-816 A2 is a wireless router from China's AUO D-Link. The D-Link DIR-816 A2 suffers from a code execution vulnerability that originates from an unverified system function in the bin/goahead file, which can be exploited by an attacker to cause remote code execution...

9.8CVSS8.4AI score0.01307EPSS
Exploits1References5
CVE
CVE
added 2025/06/30 12:0 a.m.30 views

CVE-2025-45931

An issue in D-Link DIR-816-A2 (DIR-816A2_FWv1.10CNB05_R1B011D88210) allows remote code execution via the system() function in bin/goahead, caused by unverified/system() usage. Impact is remote arbitrary code execution on affected devices. Exploitation status is not detailed in the provided connec...

9.8CVSS7.5AI score0.01307EPSS
Exploits1References2Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/23 7:36 a.m.5 views

CVE-2024-13102

A vulnerability classified as critical was found in D-Link DIR-816 A2 1.10CNB05R1B011D88210. This vulnerability affects unknown code of the file /goform/DDNS of the component DDNS Service. The manipulation leads to improper access controls. The attack can be initiated remotely. The exploit has be...

6.9CVSS5.5AI score0.00785EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:34 a.m.15 views

CVE-2024-13105

A vulnerability has been found in D-Link DIR-816 A2 1.10CNB05R1B011D88210 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /goform/form2Dhcpd.cgi of the component DHCPD Setting Handler. The manipulation leads to improper access controls. The attac...

6.9CVSS5.4AI score0.00785EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:56 a.m.11 views

CVE-2024-13104

A vulnerability, which was classified as critical, was found in D-Link DIR-816 A2 1.10CNB05R1B011D88210. Affected is an unknown function of the file /goform/form2AdvanceSetup.cgi of the component WiFi Settings Handler. The manipulation leads to improper access controls. It is possible to launch t...

6.9CVSS5.4AI score0.00725EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 5:12 a.m.10 views

CVE-2023-23711

Cross-Site Request Forgery CSRF vulnerability in A2 Hosting A2 Optimized WP plugin = 3.0.4 versions...

4.3CVSS7.1AI score0.00233EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:35 a.m.5 views

CVE-2023-49713

Denial-of-service DoS vulnerability exists in NetBIOS service of HMI GC-A2 series. If a remote unauthenticated attacker sends a specially crafted packets to specific ports, a denial-of-service DoS condition may occur...

7.5CVSS7AI score0.00981EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:23 a.m.8 views

CVE-2023-43239

D-Link DIR-816 A2 v1.10CNB05 was discovered to contain a stack overflow via parameter flag5G in showMACfilterMAC...

9.8CVSS7.8AI score0.12242EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 11:55 p.m.6 views

CVE-2022-43002

D-Link DIR-816 A2 1.10 B05 was discovered to contain a stack overflow via the wizardstep54pskpwd parameter at /goform/form2WizardStep54...

9.8CVSS7.9AI score0.01191EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:49 p.m.8 views

CVE-2022-43003

D-Link DIR-816 A2 1.10 B05 was discovered to contain a stack overflow via the pskValue parameter in the setRepeaterSecurity function...

9.8CVSS7.9AI score0.01191EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:14 p.m.5 views

CVE-2022-37128

In D-Link DIR-816 A2v1.10CNB04.img the network can be initialized without authentication via /goform/wizardend...

9.8CVSS7.2AI score0.21246EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:19 a.m.8 views

CVE-2019-15468

The Xiaomi Mi A2 Lite Android device with a build fingerprint of xiaomi/daisy/daisysprout:9/PKQ1.180917.001/V10.0.3.0.PDLMIXM:user/release-keys contains a pre-installed app with a package name of com.huaqin.factory app versionCode=1, versionName=QL1715201812071953 that allows unauthorized wireles...

5.5CVSS6.6AI score0.00285EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:19 a.m.8 views

CVE-2019-15473

The Xiaomi Mi A2 Lite Android device with a build fingerprint of xiaomi/jasmine/jasminesprout:9/PKQ1.180904.001/V10.0.2.0.PDIMIFJ:user/release-keys contains a pre-installed app with a package name of com.qualcomm.qti.callenhancement app versionCode=28, versionName=9 that allows unauthorized...

5.5CVSS6.5AI score0.00305EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:29 a.m.8 views

CVE-2019-10042

The D-Link DIR-816 A2 1.11 router only checks the random token when authorizing a goform request. An attacker can get this token from dirlogin.asp and use an API URL /goform/LoadDefaultSettings to reset the router without authentication...

7.8CVSS6.9AI score0.01706EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:37 a.m.5 views

CVE-2019-15472

The Xiaomi Mi A2 Lite Android device with a build fingerprint of xiaomi/daisy/daisysprout:9/PKQ1.180917.001/V10.0.3.0.PDLMIXM:user/release-keys contains a pre-installed app with a package name of com.qualcomm.qti.callenhancement app versionCode=28, versionName=9 that allows unauthorized microphon...

5.5CVSS6.5AI score0.00336EPSS
Exploits0References1
Rows per page
Query Builder