Lucene search
K

18 matches found

RedhatCVE
RedhatCVE
added 2025/12/17 6:2 p.m.15 views

CVE-2023-53896

D-Link DAP-1325 firmware version 1.01 contains a broken access control vulnerability that allows unauthenticated attackers to download device configuration settings without authentication. Attackers can exploit the /cgi-bin/ExportSettings.sh endpoint to retrieve sensitive configuration informatio...

8.7CVSS6.8AI score0.0062EPSS
Exploits1References1
CNVD
CNVD
added 2024/07/19 12:0 a.m.3 views

D-Link DAP-1325 SetHostIPv6StaticSettings Stack Buffer Overflow Vulnerability

D-Link DAP-1325 is a wireless access point/bridge made by D-Link, which is mainly used to extend the wireless network coverage, support the conversion of wired network to wireless network or connect different wireless networks. The D-Link DAP-1325 suffers from a stack buffer overflow vulnerabilit...

8.8CVSS9.3AI score0.00855EPSS
Exploits0References1
CNVD
CNVD
added 2024/07/19 12:0 a.m.2 views

D-Link DAP-1325 StaticDefaultGateway Stack Buffer Overflow Vulnerability

D-Link DAP-1325 is a wireless access point/bridge made by D-Link, which is mainly used to extend the wireless network coverage, support the conversion of wired network to wireless network or connect different wireless networks. The D-Link DAP-1325 suffers from a stack buffer overflow vulnerabilit...

8.8CVSS9.3AI score0.00855EPSS
Exploits0References1
OSV
OSV
added 2024/05/03 3:15 a.m.0 views

CVE-2023-41213

D-Link DAP-1325 setDhcpAssignRangeUpdate lanipaddr Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. Authentication is not required to exploit this...

8.8CVSS6.3AI score0.00855EPSS
Exploits0References2
OSV
OSV
added 2024/05/03 3:15 a.m.2 views

CVE-2023-41211

D-Link DAP-1325 SetHostIPv6StaticSettings StaticPrefixLength Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. Authentication is not required to...

8.8CVSS6.3AI score0.00855EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2024/05/03 3:15 a.m.6 views

CVE-2023-41210

D-Link DAP-1325 SetHostIPv6StaticSettings StaticDNS2 Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. Authentication is not required to exploit this...

8.8CVSS6.3AI score0.00855EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2024/05/03 3:15 a.m.7 views

CVE-2023-41198

D-Link DAP-1325 HNAP SetHostIPv6StaticSettings StaticDNS1 Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. Authentication is not required to exploit this...

8.8CVSS6.3AI score0.01187EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2024/05/03 3:15 a.m.5 views

CVE-2023-41200

D-Link DAP-1325 HNAP SetHostIPv6StaticSettings StaticPrefixLength Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. Authentication is not required to exploit...

8.8CVSS6.2AI score0.01187EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2024/05/03 3:15 a.m.6 views

CVE-2023-41200

D-Link DAP-1325 HNAP SetHostIPv6StaticSettings StaticPrefixLength Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. Authentication is not required to exploit...

8.8CVSS6.3AI score0.01187EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2024/05/03 3:15 a.m.4 views

CVE-2023-41199

D-Link DAP-1325 HNAP SetHostIPv6StaticSettings StaticDNS2 Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. Authentication is not required to exploit this...

8.8CVSS6.3AI score0.01187EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2024/05/03 3:15 a.m.3 views

CVE-2023-41201

D-Link DAP-1325 HNAP SetSetupWizardStatus Enabled Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. Authentication is not required to exploit this vulnerabilit...

8.8CVSS6.3AI score0.01187EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2024/05/03 3:15 a.m.3 views

CVE-2023-41188

D-Link DAP-1325 HNAP SetAPLanSettings DeviceName Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. Authentication is not required to exploit this vulnerability...

8.8CVSS6.2AI score0.01187EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2023/10/09 12:0 a.m.3 views

The vulnerability of the SetHostIPv6StaticSettings() function in the wireless signal booster software D-Link DAP-1325 allows a hacker to execute arbitrary code.

The vulnerability of the SetHostIPv6StaticSettings function in the D-Link DAP-1325 wireless signal booster software is related to the escape of the operation outside the buffer in memory when processing the StaticDefaultGateway parameter. Exploiting this vulnerability allows a remote attacker to...

8.8CVSS8.2AI score0.00855EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/09/26 12:0 a.m.7 views

The vulnerability of the SetHostIPv6StaticSettings function in the D-Link DAP-1325 wireless signal booster software allows a hacker to execute arbitrary code.

The vulnerability of the SetHostIPv6StaticSettings function in the microprogramming software of the D-Link DAP-1325 wireless signal booster relates to the lack of measures to neutralize special elements. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

8.8CVSS8AI score0.01187EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/09/25 12:0 a.m.4 views

The vulnerability of the SetAPLanSettings() function in the microprogramming software of the D-Link DAP-1325 wireless signal booster allows a hacker to execute arbitrary code.

The vulnerability of the SetAPLanSettings function in the microprogramming software of the D-Link DAP-1325 wireless signal booster relates to the lack of measures to neutralize specific elements. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

8.8CVSS8AI score0.01187EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/09/13 12:0 a.m.5 views

The vulnerability of the SetAPLanSettings DeviceName() function in the microprogramming software of the D-Link DAP-1325 wireless signal booster allows a hacker to execute arbitrary code.

The vulnerability of the SetAPLanSettings DeviceName function in the microprogramming software of the D-Link DAP-1325 wireless signal amplifier is related to the execution of operations outside the buffer in memory when processing request parameters for endpoints. Exploiting this vulnerability...

8.8CVSS8.4AI score0.01187EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2022/09/28 12:0 a.m.4 views

PT-2022-7015 · D Link · D-Link Dap-1325

Name of the Vulnerable Software and Affected Versions: D-Link DAP-1325 affected versions not specified Description: The issue is related to a stack-based buffer overflow in the SetHostIPv6StaticSettings function when handling the StaticAddress parameter. This can be exploited by a remote attacker...

8.8CVSS7.9AI score0.00855EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2022/09/28 12:0 a.m.4 views

PT-2022-6985 · D Link · D-Link Dap-1325

Name of the Vulnerable Software and Affected Versions: D-Link DAP-1325 affected versions not specified Description: This issue allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. Authentication is not required to exploit this issue. Th...

8.8CVSS7.4AI score0.00855EPSS
Exploits0References7
Rows per page
Query Builder