9 matches found
CVE-2025-45784
D-Link DPH-400S/SE VoIP Phone v1.01 contains hardcoded provisioning variables, including PROVISUSERPASSWORD, which may expose sensitive user credentials. An attacker with access to the firmware image can extract these credentials using static analysis tools such as strings or xxd, potentially...
CVE-2025-45784
D-Link DPH-400S/SE VoIP Phone v1.01 contains hardcoded provisioning variables, including PROVISUSERPASSWORD, which may expose sensitive user credentials. An attacker with access to the firmware image can extract these credentials using static analysis tools such as strings or xxd, potentially...
CVE-2025-45784
D-Link DPH-400S/SE VoIP Phone v1.01 contains hardcoded provisioning variables, including PROVISUSERPASSWORD, which may expose sensitive user credentials. An attacker with access to the firmware image can extract these credentials using static analysis tools such as strings or xxd, potentially...
CVE-2025-45784
CVE-2025-45784 affects the D-Link DPH-400S/SE VoIP Phone (v1.01). The issue is due to hardcoded provisioning variables in the firmware binary (notably PROVIS_USER_PASSWORD), resulting from insecure storage of sensitive information. An attacker who can access the firmware image could extract crede...
CVE-2025-45784
D-Link DPH-400S/SE VoIP Phone v1.01 contains hardcoded provisioning variables, including PROVISUSERPASSWORD, which may expose sensitive user credentials. An attacker with access to the firmware image can extract these credentials using static analysis tools such as strings or xxd, potentially...
D-Link VoIP Phone Adapter XSS/XSRF Remote Firmware Overwrite
No description provided by source. D-link VoIP Phone Adapter XSS and XSRFremote firmware overwrite model number: DVG-2001s f/w version 1.00.007 Better than just remote code execution, you control the firmware. html form action="http://10.1.1.166/Forms/cbiSetSWUpdate?16640,0,0,0,0,0,0,0,0"...
D-Link VoIP Phone Adapter XSRF / XSS
D-link VoIP Phone Adapter XSS and XSRFremote firmware overwrite model number: DVG-2001s f/w version 1.00.007 Better than just remote code execution, you control the firmware. and xss which can be used for csrf bypass:...
D-Link VoIP Phone Adapter XSS/XSRF Remote Firmware Overwrite
Exploit for hardware platform in category remote exploits ============================================================ D-Link VoIP Phone Adapter XSS/XSRF Remote Firmware Overwrite ============================================================ D-link VoIP Phone Adapter XSS and XSRFremote firmware...
D-Link VoIP Phone Adapter - Cross-Site Scripting Cross-Site Request Forgery Remote Firmware Overwrite
D-Link VoIP Phone Adapter - Cross-Site Scripting Cross-Site Request Forgery Remote Firmware Overwrite D-link VoIP Phone Adapter XSS and XSRFremote firmware overwrite model number: DVG-2001s f/w version 1.00.007 Better than just remote code execution, you control the firmware. and xss which can be...