4 matches found
CVE-2022-40718
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected D-Link DIR-2150 4.0.1 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the anweb service, which listens on TCP ports 80 and 443 by default. The issue...
D-Link DIR-2150 <= 4.0.1 Multiple Vulnerabilities
D-Link DIR-2150 devices are prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
CVE-2022-40718
CVE-2022-40718 concerns D-Link DIR-2150 (firmware 4.0.1). The flaw is a stack-based buffer overflow in the anweb service (listening on TCP ports 80/443) caused by improper validation of user-supplied data length, allowing network-adjacent attackers to execute code with root privileges. Multiple s...
CVE-2022-40718
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected D-Link DIR-2150 4.0.1 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the anweb service, which listens on TCP ports 80 and 443 by default. The issue...