56 matches found
CVE-2026-36983
D-Link DCS-932L v2.18.01 is vulnerable to Command Injection in the function sub42EF14 of the file /bin/alphapd. The manipulation of the argument LightSensorControl leads to command injection...
CVE-2026-36983
D-Link DCS-932L v2.18.01 is vulnerable to Command Injection in the function sub42EF14 of the file /bin/alphapd. The manipulation of the argument LightSensorControl leads to command injection...
EUVD-2025-16839
Malicious code in bioql PyPI...
EUVD-2025-16840
Malicious code in bioql PyPI...
The vulnerability of the setSystemEmail() function in D-Link DCS-932L microprogrammed video cameras allows a intruder to execute arbitrary code or cause a service failure.
The vulnerability of the setSystemEmail function in D-Link DCS-932L microprogrammed surveillance cameras is related to the issue where the operation data is written outside of the buffer in memory when processing the EmailSMTPPortNumber parameter. Exploiting this vulnerability allows a remote...
D-Link DCS-932L Buffer Overflow Vulnerability
The D-Link DCS-932L is a network surveillance camera from China AUO D-Link. It is used for security and surveillance. The D-Link DCS-932L suffers from a buffer overflow vulnerability that originates from the parameter EmailSMTPPortNumber in file /setSystemEmail failing to properly validate the...
D-Link DCS-932L setSystemAdmin File Command Injection Vulnerability
The D-Link DCS-932L is a network surveillance camera from China AUO D-Link. It is used for security and surveillance. The D-Link DCS-932L suffers from a command injection vulnerability that stems from the parameter AdminID in the file /setSystemAdmin failing to correctly filter constructed comman...
CVE-2025-5573
A vulnerability was found in D-Link DCS-932L 2.18.01. It has been rated as critical. Affected by this issue is the function setSystemWizard/setSystemControl of the file /setSystemWizard. The manipulation of the argument AdminID leads to os command injection. The attack may be launched remotely. T...
CVE-2025-5572
A vulnerability was found in D-Link DCS-932L 2.18.01. It has been declared as critical. Affected by this vulnerability is the function setSystemEmail of the file /setSystemEmail. The manipulation of the argument EmailSMTPPortNumber leads to stack-based buffer overflow. The attack can be launched...
CVE-2025-5571
A vulnerability was found in D-Link DCS-932L 2.18.01. It has been classified as critical. Affected is the function setSystemAdmin of the file /setSystemAdmin. The manipulation of the argument AdminID leads to os command injection. It is possible to launch the attack remotely. The exploit has been...
CVE-2025-5572
A vulnerability was found in D-Link DCS-932L 2.18.01. It has been declared as critical. Affected by this vulnerability is the function setSystemEmail of the file /setSystemEmail. The manipulation of the argument EmailSMTPPortNumber leads to stack-based buffer overflow. The attack can be launched...
CVE-2025-5573
A vulnerability was found in D-Link DCS-932L 2.18.01. It has been rated as critical. Affected by this issue is the function setSystemWizard/setSystemControl of the file /setSystemWizard. The manipulation of the argument AdminID leads to os command injection. The attack may be launched remotely. T...
CVE-2025-5573
A vulnerability was found in D-Link DCS-932L 2.18.01. It has been rated as critical. Affected by this issue is the function setSystemWizard/setSystemControl of the file /setSystemWizard. The manipulation of the argument AdminID leads to os command injection. The attack may be launched remotely. T...
CVE-2025-5573 D-Link DCS-932L setSystemWizard setSystemControl os command injection
A vulnerability was found in D-Link DCS-932L 2.18.01. It has been rated as critical. Affected by this issue is the function setSystemWizard/setSystemControl of the file /setSystemWizard. The manipulation of the argument AdminID leads to os command injection. The attack may be launched remotely. T...
CVE-2025-5573
The CVE-2025-5573 entry concerns D-Link DCS-932L (firmware 2.18.01) with a flaw in the setSystemWizard/setSystemControl function in /setSystemWizard. Manipulating the AdminID argument leads to an OS command injection, exploitable remotely. Public exploit appears to have been disclosed, and affect...
CVE-2025-5573 D-Link DCS-932L setSystemWizard setSystemControl os command injection
A vulnerability was found in D-Link DCS-932L 2.18.01. It has been rated as critical. Affected by this issue is the function setSystemWizard/setSystemControl of the file /setSystemWizard. The manipulation of the argument AdminID leads to os command injection. The attack may be launched remotely. T...
CVE-2025-5572 D-Link DCS-932L setSystemEmail stack-based overflow
A vulnerability was found in D-Link DCS-932L 2.18.01. It has been declared as critical. Affected by this vulnerability is the function setSystemEmail of the file /setSystemEmail. The manipulation of the argument EmailSMTPPortNumber leads to stack-based buffer overflow. The attack can be launched...
CVE-2025-5572
CVE-2025-5572 concerns the D-Link DCS-932L camera (firmware 2.18.01). The vulnerability lies in the function setSystemEmail in /setSystemEmail, where manipulating the EmailSMTPPortNumber argument causes a stack-based buffer overflow. It is described as remotely exploitable, and the affected devic...
CVE-2025-5571 D-Link DCS-932L setSystemAdmin os command injection
A vulnerability was found in D-Link DCS-932L 2.18.01. It has been classified as critical. Affected is the function setSystemAdmin of the file /setSystemAdmin. The manipulation of the argument AdminID leads to os command injection. It is possible to launch the attack remotely. The exploit has been...
CVE-2025-5571
CVE-2025-5571 affects D-Link DCS-932L (firmware 2.18.01). The vulnerability resides in setSystemAdmin, where manipulating the AdminID parameter enables OS command injection. Exploitation appears remote and the issue is associated with devices no longer supported by the maintainer. Public disclosu...