Lucene search
K

12 matches found

BDU FSTEC
BDU FSTEC
added 2025/08/11 12:0 a.m.10 views

The vulnerability of the DEVICE_PING command in the monitoring and control software for solar energy systems, Tigo Cloud Connect Advanced (CCA), allows a hacker to gain unauthorized access to protected information, execute arbitrary commands, or cause service interruptions.

The vulnerability of the DEVICEPING command in the monitoring and management tool for solar energy systems, Tigo Cloud Connect Advanced CCA, is related to the lack of data cleaning at the control level during the processing of the final endpoint /cgi-bin/mobileapi. Exploiting this vulnerability c...

9CVSS5.8AI score0.16238EPSS
Exploits2References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/13 12:0 a.m.5 views

The vulnerability of the sub_F3C8C function in the Tenda CP3 IP camera software allows a intruder to execute arbitrary code.

The vulnerability of the subF3C8C function in the Tenda CP3 IP camera software relates to the lack of measures taken to clean data at the control level. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

6.5CVSS5.9AI score0.04916EPSS
Exploits1References7Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/04/11 12:0 a.m.4 views

The vulnerability of the recvSlaveCloudCheckStatus() function in the microprogramming software for TOTOLINK T8 allows a hacker to execute arbitrary commands.

The vulnerability of the recvSlaveCloudCheckStatus function in the microprogramming software for TOTOLINK T8 routers is related to the lack of measures taken to clean data at the management level when processing the ip parameter. Exploiting this vulnerability allows a remote attacker to execute...

10CVSS8.1AI score0.02109EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/09/30 12:0 a.m.5 views

The vulnerability of the upgrade_filter_asp function in D-Link DI-8004W router software allows a hacker to execute arbitrary commands.

The vulnerability of the upgradefilterasp function in D-Link DI-8004W router microprogramming software is related to the lack of measures taken to clean data at the control level. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

10CVSS5.9AI score0.01455EPSS
Exploits1References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/09/30 12:0 a.m.8 views

The vulnerability of the cgi_FMT_R12R5_3rd_DiskMGR() function (/cgi-bin/hd_config.cgi) in the D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05, and DNS-1550-04 devices allows a hacker to execute arbitrary commands.

The vulnerability of the cgiFMTR12R53rdDiskMGR function /cgi-bin/hdconfig.cgi in the D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05, and DNS-1550-04...

9CVSS7AI score0.07482EPSS
Exploits1References7
BDU FSTEC
BDU FSTEC
added 2024/05/24 12:0 a.m.5 views

The vulnerability of the CPCI85 and SICORE processor module control software from Siemens SICAM allows a hacker to execute arbitrary code.

The vulnerability of the CPCI85 and SICORE processor module management systems from Siemens SICAM lies in the lack of measures taken to clean data at the control level. Exploiting this vulnerability allows a remote attacker to execute arbitrary code with root privileges...

9CVSS6AI score0.02437EPSS
Exploits1References3
BDU FSTEC
BDU FSTEC
added 2023/09/26 12:0 a.m.4 views

The vulnerability of the D-LINK DIR-806 wireless router’s microprogramming software arises from the lack of measures taken to clean data at the control level, allowing attackers to execute arbitrary commands.

The vulnerability of the D-LINK DIR-806 wireless router’s microprogramming software is related to the lack of measures taken to clean data at the control level. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

8.5CVSS8.1AI score0.02403EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2023/09/21 12:0 a.m.5 views

PT-2023-5415 · D Link · D-Link Dir-806

Name of the Vulnerable Software and Affected Versions: D-LINK DIR-806 versions DIR806A1 FW100CNb11 Description: The issue is related to a lack of proper data cleaning at the management level, which can be exploited by a remote attacker to execute arbitrary commands using the HTTP ST parameter. Th...

9.8CVSS9.7AI score0.0242EPSS
Exploits1References8
BDU FSTEC
BDU FSTEC
added 2023/07/06 12:0 a.m.5 views

The vulnerability of the _httpRpmPlcDeviceAdd function in the microprogramming software of the TP-Link TL-WPA4530 V2 allows a hacker to execute arbitrary code.

The vulnerability of the httpRpmPlcDeviceAdd function in the microprogrammed software of the TP-Link TL-WPA4530 V2 device is related to the lack of measures taken to clean data at the control level. Exploiting this vulnerability can allow a remote attacker to execute arbitrary code...

9CVSS8AI score0.02478EPSS
Exploits1References3
BDU FSTEC
BDU FSTEC
added 2022/10/20 12:0 a.m.6 views

The vulnerability of the Wi-Fi Aruba Instant deployment application, related to the lack of data cleaning at the management level, allows a perpetrator to execute arbitrary commands.

The vulnerability of the Wi-Fi Aruba Instant deployment application is related to the lack of measures taken to clean data at the management level. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands by sending specially crafted data...

10CVSS8.1AI score0.03295EPSS
Exploits0References5Affected Software2
BDU FSTEC
BDU FSTEC
added 2022/01/25 12:0 a.m.6 views

The vulnerability of NETGEAR’s Wi-Fi routers—CBR750, RBK752, RBR750, RBS750, RBK852, RBR850, and RBS850—is related to insufficient cleaning of input data, allowing attackers to execute arbitrary commands.

The vulnerability of the built-in Wi-Fi router software of NETGEAR models CBR750, RBK752, RBR750, RBS750, RBK852, RBR850, and RBS850 lies in insufficient cleaning of input data. Exploiting this vulnerability can allow a remote attacker to execute arbitrary commands...

9.6CVSS8AI score0.00998EPSS
Exploits0References3Affected Software13
BDU FSTEC
BDU FSTEC
added 2019/12/17 12:0 a.m.5 views

The vulnerability of TP-Link M7350 router’s microprogramming software, related to the lack of data cleaning measures at the control level, allows attackers to execute arbitrary commands.

The vulnerability of TP-Link M7350 router’s microprogramming software is related to the lack of measures taken for data cleaning at the control level. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands until authentication is completed...

10CVSS8.2AI score0.03356EPSS
Exploits0References4
Rows per page
Query Builder