Lucene search
K

8 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-27985

Malware in sbrugna...

9CVSS7AI score0.0229EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2023/05/17 12:0 a.m.8 views

The vulnerability of the administrator consoles of microprogrammed software for wireless signal amplifiers from D-Link’s DCH-M225 allows a intruder to execute arbitrary commands.

The vulnerability of the administrator consoles of microprogrammed software for D-Link DCH-M225 wireless signal amplifiers is related to the lack of measures taken to neutralize special elements used in the operating system’s command processing when handling the “media renderer” parameter in the...

9CVSS7.5AI score0.0229EPSS
Exploits0References3Affected Software1
CNVD
CNVD
added 2020/02/24 12:0 a.m.2 views

D-Link DCH-M225 Arbitrary OS Command Execution Vulnerability (CNVD-2020-13159)

The DCH-M225 is a Wifi portable audio extender. An arbitrary OS command execution vulnerability exists in D-Link DCH-M225 1.05b01 and earlier versions. A remote attacker can exploit this vulnerability to execute arbitrary OS commands via shell metacharacters in the spotifyConnect.php userName...

10CVSS8AI score0.02811EPSS
Exploits1References1
OSV
OSV
added 2020/02/21 4:15 p.m.3 views

CVE-2020-6842

D-Link DCH-M225 1.05b01 and earlier devices allow remote authenticated admins to execute arbitrary OS commands via shell metacharacters in the media renderer name...

7.2CVSS7.3AI score0.0229EPSS
Exploits0References2
OSV
OSV
added 2020/02/21 4:15 p.m.2 views

CVE-2020-6841

D-Link DCH-M225 1.05b01 and earlier devices allow remote attackers to execute arbitrary OS commands via shell metacharacters in the spotifyConnect.php userName parameter...

9.8CVSS7.6AI score0.02811EPSS
Exploits1References2
Prion
Prion
added 2020/02/21 4:15 p.m.25 views

Design/Logic Flaw

D-Link DCH-M225 1.05b01 and earlier devices allow remote authenticated admins to execute arbitrary OS commands via shell metacharacters in the media renderer name...

9CVSS7.2AI score0.0229EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2020/02/21 12:0 a.m.45 views

CVE-2020-6841

D-Link DCH-M225 1.05b01 and earlier devices allow remote attackers to execute arbitrary OS commands via shell metacharacters in the spotifyConnect.php userName parameter. Recent assessments: kevthehermit at February 22, 2020 10:59pm UTC reported: This analysis is a transcript of a public gist –...

10CVSS1.1AI score0.02811EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2020/02/21 12:0 a.m.4 views

PT-2020-6868 · D Link · D-Link Dch-M225

Name of the Vulnerable Software and Affected Versions: D-Link DCH-M225 versions 1.05b01 and earlier Description: The issue is related to the spotifyConnect.php script in the D-Link DCH-M225 device, where it fails to neutralize special elements used in an OS command when processing the userName...

10CVSS9.6AI score0.02811EPSS
Exploits1References4
Rows per page
Query Builder