CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1095 matches found

RedhatCVE•added 2026/01/09 12:34 p.m.•6 views

CVE-2023-45208

A command injection in the parsingxmlstasurvey function inside libcgifunc.so of the D-Link DAP-X1860 repeater 1.00 through 1.01b05-01 allows attackers within range of the repeater to run shell commands as root during the setup process of the repeater, via a crafted SSID. Also, network names...

8.8CVSS7.5AI score0.01613EPSS

Exploits1References1

RedhatCVE•added 2026/01/09 9:21 a.m.•5 views

CVE-2021-27250

This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of D-Link DAP-2020 v1.01rc001 Wi-Fi access points. Authentication is not required to exploit this vulnerability. The specific flaw exists within the processing of CGI scripts. When...

6.5CVSS5.7AI score0.72718EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 8:53 a.m.•4 views

CVE-2021-27249

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2020 v1.01rc001 Wi-Fi access points. Authentication is not required to exploit this vulnerability. The specific flaw exists within the processing of CGI scripts. The issue result...

8.8CVSS7.1AI score0.05801EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 8:53 a.m.•20 views

CVE-2021-27248

8.8CVSS7.1AI score0.0204EPSS

Exploits0References1

RedhatCVE•added 2026/01/07 9:29 a.m.•6 views

CVE-2019-12767

An issue was discovered on D-Link DAP-1650 devices before 1.04B02J65H Hot Fix. Attackers can execute arbitrary commands...

9.8CVSS7.7AI score0.00941EPSS

Exploits0References1

RedhatCVE•added 2026/01/07 9:11 a.m.•9 views

CVE-2025-1538

A vulnerability classified as critical was found in D-Link DAP-1320 1.00. Affected by this vulnerability is the function setwsaction of the file /dws/api/. The manipulation leads to heap-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and m...

9CVSS7AI score0.00174EPSS

Exploits1References1

OSV•added 2025/12/16 6:16 p.m.•2 views

CVE-2023-53896

D-Link DAP-1325 firmware version 1.01 contains a broken access control vulnerability that allows unauthenticated attackers to download device configuration settings without authentication. Attackers can exploit the /cgi-bin/ExportSettings.sh endpoint to retrieve sensitive configuration informatio...

8.7CVSS7.3AI score0.00202EPSS

Exploits1References3

NVD•added 2025/12/16 6:16 p.m.•2 views

CVE-2023-53896

8.7CVSS0.00202EPSS

Exploits1References3

EUVD•added 2025/12/16 5:6 p.m.•3 views

EUVD-2023-60194

8.7CVSS6.2AI score0.00202EPSS

Exploits1References4

CNNVD•added 2025/12/16 12:0 a.m.•1 views

D-Link DAP-1325 访问控制错误漏洞

The D-Link DAP-1325 is a wireless access point/bridge from China's AUO D-Link, which is primarily used to provide wireless network coverage and has a bridging function to convert a wired network to a wireless network or connect two wireless networks together. An access control error vulnerability...

8.7CVSS9.1AI score0.00202EPSS

Exploits1References3

RedhatCVE•added 2025/10/28 4:54 p.m.•1 views

CVE-2025-12296

A security vulnerability has been detected in D-Link DAP-2695 2.00RC13. The impacted element is the function sub4174B0 of the component Firmware Update Handler. The manipulation leads to os command injection. The attack may be initiated remotely. The exploit has been disclosed publicly and may be...

9.8CVSS7AI score0.00133EPSS

Exploits1References1

OSV•added 2025/10/27 5:15 p.m.•2 views

CVE-2025-12296

9.8CVSS5.5AI score

Exploits0References5

NVD•added 2025/10/27 5:15 p.m.•4 views

CVE-2025-12296

9.8CVSS0.00133EPSS

Exploits1References5

EUVD•added 2025/10/27 4:32 p.m.•3 views

EUVD-2025-36209

5.8CVSS6.5AI score0.00133EPSS

Exploits1References6

Cvelist•added 2025/10/27 4:32 p.m.•6 views

CVE-2025-12296 D-Link DAP-2695 Firmware Update sub_4174B0 os command injection

5.8CVSS0.00133EPSS

Exploits1References5

CVE•added 2025/10/27 4:32 p.m.•8 views

CVE-2025-12296

The CVE-2025-12296 entry affects D-Link DAP-2695 model with firmware 2.00RC13. The vulnerability arises from the function sub_4174B0 in the Firmware Update Handler, enabling os command injection due to a manipulation. It can be triggered remotely, and the exploit has been publicly disclosed. The ...

9.8CVSS5.2AI score0.00133EPSS

Exploits1References5Affected Software1

Vulnrichment•added 2025/10/27 4:32 p.m.•2 views

CVE-2025-12296 D-Link DAP-2695 Firmware Update sub_4174B0 os command injection

5.8CVSS6.7AI score0.00133EPSS

Exploits1References5

CVE•added 2025/10/27 4:32 p.m.•7 views

CVE-2025-12295

CVE-2025-12295 affects D-Link DAP-2695 with firmware version 2.00RC13. The vulnerability is in the Firmware Update Handler’s function sub_40C6B8, where manipulated submissions can bypass cryptographic signature verification. The issue can be exploited remotely; exploitation complexity is noted as...

8.1CVSS6.4AI score0.00233EPSS

Exploits1References5Affected Software1

EUVD•added 2025/10/27 4:32 p.m.•3 views

EUVD-2025-36210

A weakness has been identified in D-Link DAP-2695 2.00RC13. The affected element is the function sub40C6B8 of the component Firmware Update Handler. Executing manipulation can lead to improper verification of cryptographic signature. The attack can be launched remotely. Attacks of this nature are...

7.5CVSS6.3AI score0.00233EPSS

Exploits1References6

Cvelist•added 2025/10/27 4:32 p.m.•5 views

CVE-2025-12295 D-Link DAP-2695 Firmware Update sub_40C6B8 signature verification

7.5CVSS0.00233EPSS

Exploits1References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by