Lucene search
K

18 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2020-5412

Malware in sbrugna...

7.5CVSS7.5AI score0.01205EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-5411

Malware in sbrugna...

6.5CVSS6.5AI score0.00755EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/07/25 12:0 a.m.5 views

D-Link DSP-W215 安全漏洞

D-Link DSP-W215 is a smart plug product from China AUO D-Link. A security vulnerability exists in the D-Link DSP-W215 version 1.02, which stems from the mycgi.cgi component improperly handling HTTP POST requests, which could lead to a stack buffer overflow and remote code execution...

9.8CVSS8.2AI score0.05031EPSS
Exploits1References7
RedhatCVE
RedhatCVE
added 2025/05/22 3:12 p.m.8 views

CVE-2020-13136

D-Link DSP-W215 1.26b03 devices send an obfuscated hash that can be retrieved and understood by a network sniffer...

7.5CVSS7.1AI score0.01205EPSS
Exploits0
Prion
Prion
added 2021/08/10 8:15 p.m.13 views

Null pointer dereference

UNSUPPORTED WHEN ASSIGNED Null Pointer Dereference vulnerability exists in D-Link DSP-W215 1.10, which could let a remote malicious user cause a denial of servie via usr/bin/lighttpd. It could be triggered by sending an HTTP request without URL in the start line directly to the device. NOTE: The...

5CVSS7.4AI score0.01127EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2021/08/10 12:0 a.m.4 views

PT-2021-18162 · D Link · D-Link Dsp-W215

Name of the Vulnerable Software and Affected Versions: D-Link DSP-W215 version 1.10 Description: A Null Pointer Dereference issue exists, which could allow a remote malicious user to cause a denial of service via usr/bin/lighttpd. This can be triggered by sending an HTTP request without a URL in...

7.5CVSS6.8AI score0.01127EPSS
Exploits0References4
CNVD
CNVD
added 2020/05/19 12:0 a.m.3 views

D-Link DSP-W215 Information Disclosure Vulnerability (CNVD-2020-33174)

The D-Link DSP-W215 is a smart plug product from Taiwan, China-based AUO D-Link. A security vulnerability exists in D-Link DSP-W215 version 1.26b03. An attacker can exploit the vulnerability to cause information disclosure...

6.5CVSS6.6AI score0.00755EPSS
Exploits0References1
OSV
OSV
added 2020/05/18 5:15 p.m.3 views

CVE-2020-13135

D-Link DSP-W215 1.26b03 devices allow information disclosure by intercepting messages on the local network, as demonstrated by a Squid Proxy...

6.5CVSS6.6AI score0.00755EPSS
Exploits0References1
Prion
Prion
added 2020/05/18 5:15 p.m.12 views

Design/Logic Flaw

D-Link DSP-W215 1.26b03 devices send an obfuscated hash that can be retrieved and understood by a network sniffer...

5CVSS7.6AI score0.01205EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2020/05/18 5:15 p.m.14 views

Information disclosure

D-Link DSP-W215 1.26b03 devices allow information disclosure by intercepting messages on the local network, as demonstrated by a Squid Proxy...

3.3CVSS6.2AI score0.00755EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2020/05/18 12:0 a.m.7 views

PT-2020-13350 · D Link · D-Link Dsp-W215

Name of the Vulnerable Software and Affected Versions: D-Link DSP-W215 version 1.26b03 Description: The issue concerns the transmission of an obfuscated hash by the device, which can be intercepted and decoded by a network sniffer. Recommendations: For D-Link DSP-W215 version 1.26b03, consider...

7.5CVSS7.5AI score0.01205EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2020/05/18 12:0 a.m.6 views

PT-2020-13349 · Squid +1 · Squid Proxy +1

Name of the Vulnerable Software and Affected Versions: D-Link DSP-W215 version 1.26b03 Description: The issue allows information disclosure by intercepting messages on the local network. This can be demonstrated using a Squid Proxy. Recommendations: For D-Link DSP-W215 version 1.26b03, consider...

6.5CVSS6.2AI score0.00755EPSS
Exploits0References2
Exploit DB
Exploit DB
added 2014/07/14 12:0 a.m.30 views

D-Link Devices - 'info.cgi' POST Buffer Overflow (Metasploit)

This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'D-Link info.cgi POST Request Buffer Overflow', 'Description' = %q This module exploits an anonymous remote code execution vulnerabili...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2014/07/14 12:0 a.m.46 views

D-Link HNAP - Request Remote Buffer Overflow (Metasploit)

This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'D-Link HNAP Request Remote Buffer Overflow', 'Description' = %q This module exploits an anonymous remote code execution vulnerability...

10CVSS7.4AI score0.76555EPSS
Exploits6
0day.today
0day.today
added 2014/07/12 12:0 a.m.33 views

D-Link DSP-W215 (info.cgi) POST Request Buffer Overflow Exploit

This Metasploit module exploits an anonymous remote code execution vulnerability on different D-Link devices. The vulnerability is an stack based buffer overflow in the mycgi.cgi component, when handling specially crafted POST HTTP requests addresses to the /common/info.cgi handler. This Metasplo...

8.3AI score
Exploits0
Metasploit
Metasploit
added 2014/07/11 4:39 p.m.18 views

D-Link info.cgi POST Request Buffer Overflow

This module exploits an anonymous remote code execution vulnerability on different D-Link devices. The vulnerability is a stack based buffer overflow in the mycgi.cgi component, when handling specially crafted POST HTTP requests addresses to the /common/info.cgi handler. This module has been...

0.7AI score
Exploits0
Metasploit
Metasploit
added 2014/07/11 3:30 p.m.40 views

D-Link HNAP Request Remote Buffer Overflow

This module exploits an anonymous remote code execution vulnerability on different D-Link devices. The vulnerability is due to a stack based buffer overflow while handling malicious HTTP POST requests addressed to the HNAP handler. This module has been successfully tested on D-Link DIR-505 in an...

10CVSS0.4AI score0.76555EPSS
Exploits6
Prion
Prion
added 2014/06/02 2:55 p.m.15 views

Stack overflow

Stack-based buffer overflow in the dohnap function in www/mycgi.cgi in D-Link DSP-W215 Rev. A1 with firmware 1.01b06 and earlier, DIR-505 with firmware before 1.08b10, and DIR-505L with firmware 1.01 and earlier allows remote attackers to execute arbitrary code via a long Content-Length header in...

10CVSS8.8AI score0.76555EPSS
Exploits6References7Affected Software6
Rows per page
Query Builder