CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

286 matches found

CVE-2026-13545

A vulnerability has been found in D-Link DCS-935L 1.10.01. This affects the function sub400E40 of the file setconf.cgi of the component POST Parameter Handler. Such manipulation of the argument UID leads to os command injection. The attack can be launched remotely. The exploit has been disclosed ...

9CVSS0.01562EPSS

Exploits1References6

CVE•added yesterday•7 views

CVE-2026-13545

CVE-2026-13545 affects D-Link DCS-935L 1.10.01. The vulnerability is in the function sub_400E40 of setconf.cgi (POST Parameter Handler); manipulating the UID argument enables an OS command injection. The attack can be launched remotely, and the exploit has been disclosed publicly. CVSS metrics in...

9CVSS7AI score0.01562EPSS

Exploits1References6Affected Software1

Positive Technologies•added 2 days ago•8 views

PT-2026-53222

Name of the Vulnerable Software and Affected Versions D-Link DCS-935L version 1.10.01 Description An OS command injection flaw exists in the POST Parameter Handler component. The issue occurs within the sub 400E40 function of the setconf.cgi file. A remote attacker can exploit this by manipulatin...

9CVSS7.6AI score0.01562EPSS

Exploits1References10

NVD•added 2026/06/13 9:16 p.m.•11 views

CVE-2026-12174

A security vulnerability has been detected in D-Link DCS-935L 1.10.01. This issue affects the function snprintf of the file /web/cgi-bin/greece/rhea of the component HTTP Handler. Such manipulation of the argument data leads to format string. The attack may be launched remotely. The exploit has...

9CVSS0.00582EPSS

Exploits0References6

Vulnrichment•added 2026/06/13 8:15 p.m.•9 views

CVE-2026-12174 D-Link DCS-935L HTTP rhea snprintf format string

9CVSS7.6AI score0.00582EPSS

Exploits0References6

Cvelist•added 2026/06/13 8:15 p.m.•29 views

CVE-2026-12174 D-Link DCS-935L HTTP rhea snprintf format string

9CVSS0.00582EPSS

Exploits0References6

CVE•added 2026/06/13 8:15 p.m.•25 views

CVE-2026-12174

CVE-2026-12174 affects D-Link DCS-935L firmware 1.10.01. The vulnerability is in the HTTP Handler’s function snprintf used by /web/cgi-bin/greece/rhea, allowing format-string manipulation. This can enable a remote attacker to exploit the flaw; public exploits have been disclosed. The available do...

9CVSS7.6AI score0.00582EPSS

Exploits0References6Affected Software1

Positive Technologies•added 2026/06/13 12:0 a.m.•11 views

PT-2026-49083

Name of the Vulnerable Software and Affected Versions D-Link DCS-935L version 1.10.01 Description A format string issue exists in the HTTP Handler component within the file '/web/cgi-bin/greece/rhea'. The problem occurs in the snprintf function when the data argument is manipulated, allowing a...

9CVSS7.3AI score0.00582EPSS

Exploits0References17

RedhatCVE•added 2026/06/09 8:59 a.m.•11 views

CVE-2026-11497

A vulnerability has been found in D-Link DCS-5615 1.01.00. Affected by this vulnerability is an unknown functionality of the file /etc/conf.d/boa/boa.conf of the component Boa Webserver. Such manipulation leads to least privilege violation. The attack can be executed remotely. The exploit has bee...

8.8CVSS5.4AI score0.00432EPSS

Exploits0References1

NVD•added 2026/06/08 9:16 a.m.•12 views

CVE-2026-11497

8.8CVSS0.00432EPSS

Exploits0References6

Vulnrichment•added 2026/06/08 6:30 a.m.•9 views

CVE-2026-11497 D-Link DCS-5615 Boa Webserver boa.conf least privilege violation

6.9CVSS5AI score0.00432EPSS

Exploits0References6

ATTACKERKB•added 2026/06/08 6:30 a.m.•5 views

CVE-2026-11497

6.9CVSS5.4AI score0.00432EPSS

Exploits0References6Affected Software1

Positive Technologies•added 2026/06/08 12:0 a.m.•17 views

PT-2026-47258

6.9CVSS5.4AI score0.00432EPSS

Exploits0References7

CNNVD•added 2026/06/08 12:0 a.m.•10 views

D-Link DCS-5615 安全漏洞

The D-Link DCS-5615 is a high-speed network dome camera produced by D-Link Corporation. Version 1.01.00 of the D-Link DCS-5615 contains a security vulnerability. This vulnerability stems from incorrect operations with the file /etc/conf.d/boa/boa.conf in the Boa Webserver component, which may lea...

8.8CVSS5.6AI score0.00432EPSS

Exploits0References1

RedhatCVE•added 2026/05/12 8:20 a.m.•8 views

CVE-2026-8260

A vulnerability was found in D-Link DCS-935L up to 1.10.01. The impacted element is the function SetDeviceSettings of the file /web/cgi-bin/hnap/hnapservice of the component HNAP Service. The manipulation of the argument AdminPassword results in buffer overflow. The attack can be executed remotel...

9CVSS7.6AI score0.00997EPSS

Exploits2References1

EUVD•added 2026/05/11 3:31 a.m.•15 views

EUVD-2026-29016

9CVSS7.6AI score0.00997EPSS

Exploits2References6

NVD•added 2026/05/11 2:16 a.m.•33 views

CVE-2026-8260

9CVSS0.00997EPSS

Exploits2References5

Vulnrichment•added 2026/05/11 1:15 a.m.•9 views

CVE-2026-8260 D-Link DCS-935L HNAP Service hnap_service SetDeviceSettings buffer overflow

9CVSS7.6AI score0.00997EPSS

Exploits2References5

ATTACKERKB•added 2026/05/11 12:0 a.m.•8 views

CVE-2026-36983

D-Link DCS-932L v2.18.01 is vulnerable to Command Injection in the function sub42EF14 of the file /bin/alphapd. The manipulation of the argument LightSensorControl leads to command injection...

5.7AI score0.01235EPSS

Exploits1References3

Vulnrichment•added 2026/05/11 12:0 a.m.•8 views

CVE-2026-36983

D-Link DCS-932L v2.18.01 is vulnerable to Command Injection in the function sub42EF14 of the file /bin/alphapd. The manipulation of the argument LightSensorControl leads to command injection...

5.7AI score0.01235EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by