Lucene search
+L

4 matches found

openvas
openvas
added 2023/02/28 12:0 a.m.31 views

D-Link DIR-2150 <= 4.0.1 Multiple Vulnerabilities

D-Link DIR-2150 devices are prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

8.8CVSS8.8AI score0.01091EPSS
Exploits0References6
nvd
nvd
added 2023/01/26 6:59 p.m.30 views

CVE-2022-40717

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected D-Link DIR-2150 4.0.1 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the anweb service, which listens on TCP ports 80 and 443 by default. The issue...

8.8CVSS8.9AI score0.00623EPSS
Exploits0References2
osv
osv
added 2023/01/26 6:59 p.m.7 views

CVE-2022-40717

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected D-Link DIR-2150 4.0.1 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the anweb service, which listens on TCP ports 80 and 443 by default. The issue...

8.8CVSS6.2AI score0.00623EPSS
Exploits0References2
cve
cve
added 2023/01/26 12:0 a.m.71 views

CVE-2022-40717

The CVE-2022-40717 entry concerns D-Link DIR-2150 routers (v4.0.1) with a stack-based buffer overflow in the anweb service (listening on TCP ports 80/443) that allows unauthenticated, network-adjacent attackers to execute code as root. The root cause is improper validation of the length of user-s...

8.8CVSS8.9AI score0.00623EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder