12 matches found
The vulnerability of the DEVICE_PING command in the monitoring and control software for solar energy systems, Tigo Cloud Connect Advanced (CCA), allows a hacker to gain unauthorized access to protected information, execute arbitrary commands, or cause service interruptions.
The vulnerability of the DEVICEPING command in the monitoring and management tool for solar energy systems, Tigo Cloud Connect Advanced CCA, is related to the lack of data cleaning at the control level during the processing of the final endpoint /cgi-bin/mobileapi. Exploiting this vulnerability c...
The vulnerability of the sub_F3C8C function in the Tenda CP3 IP camera software allows a intruder to execute arbitrary code.
The vulnerability of the subF3C8C function in the Tenda CP3 IP camera software relates to the lack of measures taken to clean data at the control level. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the recvSlaveCloudCheckStatus() function in the microprogramming software for TOTOLINK T8 allows a hacker to execute arbitrary commands.
The vulnerability of the recvSlaveCloudCheckStatus function in the microprogramming software for TOTOLINK T8 routers is related to the lack of measures taken to clean data at the management level when processing the ip parameter. Exploiting this vulnerability allows a remote attacker to execute...
The vulnerability of the upgrade_filter_asp function in D-Link DI-8004W router software allows a hacker to execute arbitrary commands.
The vulnerability of the upgradefilterasp function in D-Link DI-8004W router microprogramming software is related to the lack of measures taken to clean data at the control level. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...
The vulnerability of the cgi_FMT_R12R5_3rd_DiskMGR() function (/cgi-bin/hd_config.cgi) in the D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05, and DNS-1550-04 devices allows a hacker to execute arbitrary commands.
The vulnerability of the cgiFMTR12R53rdDiskMGR function /cgi-bin/hdconfig.cgi in the D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05, and DNS-1550-04...
The vulnerability of the CPCI85 and SICORE processor module control software from Siemens SICAM allows a hacker to execute arbitrary code.
The vulnerability of the CPCI85 and SICORE processor module management systems from Siemens SICAM lies in the lack of measures taken to clean data at the control level. Exploiting this vulnerability allows a remote attacker to execute arbitrary code with root privileges...
The vulnerability of the D-LINK DIR-806 wireless router’s microprogramming software arises from the lack of measures taken to clean data at the control level, allowing attackers to execute arbitrary commands.
The vulnerability of the D-LINK DIR-806 wireless router’s microprogramming software is related to the lack of measures taken to clean data at the control level. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...
PT-2023-5415 · D Link · D-Link Dir-806
Name of the Vulnerable Software and Affected Versions: D-LINK DIR-806 versions DIR806A1 FW100CNb11 Description: The issue is related to a lack of proper data cleaning at the management level, which can be exploited by a remote attacker to execute arbitrary commands using the HTTP ST parameter. Th...
The vulnerability of the _httpRpmPlcDeviceAdd function in the microprogramming software of the TP-Link TL-WPA4530 V2 allows a hacker to execute arbitrary code.
The vulnerability of the httpRpmPlcDeviceAdd function in the microprogrammed software of the TP-Link TL-WPA4530 V2 device is related to the lack of measures taken to clean data at the control level. Exploiting this vulnerability can allow a remote attacker to execute arbitrary code...
The vulnerability of the Wi-Fi Aruba Instant deployment application, related to the lack of data cleaning at the management level, allows a perpetrator to execute arbitrary commands.
The vulnerability of the Wi-Fi Aruba Instant deployment application is related to the lack of measures taken to clean data at the management level. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands by sending specially crafted data...
The vulnerability of NETGEAR’s Wi-Fi routers—CBR750, RBK752, RBR750, RBS750, RBK852, RBR850, and RBS850—is related to insufficient cleaning of input data, allowing attackers to execute arbitrary commands.
The vulnerability of the built-in Wi-Fi router software of NETGEAR models CBR750, RBK752, RBR750, RBS750, RBK852, RBR850, and RBS850 lies in insufficient cleaning of input data. Exploiting this vulnerability can allow a remote attacker to execute arbitrary commands...
The vulnerability of TP-Link M7350 router’s microprogramming software, related to the lack of data cleaning measures at the control level, allows attackers to execute arbitrary commands.
The vulnerability of TP-Link M7350 router’s microprogramming software is related to the lack of measures taken for data cleaning at the control level. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands until authentication is completed...