Lucene search
K

614 matches found

Positive Technologies
Positive Technologies
added 2026/05/10 12:0 a.m.31 views

PT-2026-39536

Name of the Vulnerable Software and Affected Versions D-Link DCS-935L versions prior to 1.10.01 Description A buffer overflow can be triggered remotely via the HNAP Service. The issue exists in the SetDeviceSettings function within the '/web/cgi-bin/hnap/hnap service' endpoint when manipulating t...

9CVSS7.5AI score0.00997EPSS
Exploits2References12
CNVD
CNVD
added 2026/03/17 12:0 a.m.5 views

Schneider Electric EcoStruxure Foxboro DCS Code Issue Vulnerability

The Schneider Electric EcoStruxure Foxboro DCS is an innovative fault-tolerant, highly available control component from Schneider Electric, France. A code issue vulnerability exists in the Schneider Electric EcoStruxure Foxboro DCS, which can be exploited by an attacker to cause compromise of...

7CVSS5.9AI score0.00315EPSS
Exploits0
CNNVD
CNNVD
added 2026/03/10 12:0 a.m.7 views

Schneider Electric EcoStruxure Foxboro DCS 代码问题漏洞

The Schneider Electric EcoStruxure Foxboro DCS is an innovative fault-tolerant, highly available control component from Schneider Electric, France. A code issue vulnerability exists in the Schneider Electric EcoStruxure Foxboro DCS, which can be exploited by an attacker to cause compromise of...

7CVSS6.1AI score0.00315EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/02/11 7:30 a.m.5 views

CVE-2026-2260

A vulnerability was found in D-Link DCS-931L up to 1.13.0. This affects an unknown part of the file /goform/setSysAdmin. The manipulation of the argument AdminID results in os command injection. The attack can be executed remotely. The exploit has been made public and could be used. This...

8.6CVSS5.4AI score0.04989EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/02/10 1:23 p.m.8 views

CVE-2026-2227

A vulnerability was found in D-Link DCS-931L up to 1.13.0. Impacted is the function doSystem of the file /setSystemAdmin. Performing a manipulation of the argument AdminID results in command injection. The attack may be initiated remotely. The exploit has been made public and could be used. This...

7.2CVSS5.4AI score0.05351EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/02/10 7:33 a.m.7 views

CVE-2026-2218

A vulnerability was determined in D-Link DCS-933L up to 1.14.11. This affects an unknown function of the file /setSystemAdmin of the component alphapd. This manipulation of the argument AdminID causes command injection. Remote exploitation of the attack is possible. The exploit has been publicly...

8.8CVSS5.2AI score0.03454EPSS
Exploits1References1
NVD
NVD
added 2026/02/10 4:16 a.m.8 views

CVE-2026-2260

A vulnerability was found in D-Link DCS-931L up to 1.13.0. This affects an unknown part of the file /goform/setSysAdmin. The manipulation of the argument AdminID results in os command injection. The attack can be executed remotely. The exploit has been made public and could be used. This...

8.6CVSS0.04989EPSS
Exploits1References6
Vulnrichment
Vulnrichment
added 2026/02/10 3:2 a.m.4 views

CVE-2026-2260 D-Link DCS-931L setSysAdmin os command injection

A vulnerability was found in D-Link DCS-931L up to 1.13.0. This affects an unknown part of the file /goform/setSysAdmin. The manipulation of the argument AdminID results in os command injection. The attack can be executed remotely. The exploit has been made public and could be used. This...

8.6CVSS6.8AI score0.04989EPSS
Exploits1References6
Cvelist
Cvelist
added 2026/02/10 3:2 a.m.36 views

CVE-2026-2260 D-Link DCS-931L setSysAdmin os command injection

A vulnerability was found in D-Link DCS-931L up to 1.13.0. This affects an unknown part of the file /goform/setSysAdmin. The manipulation of the argument AdminID results in os command injection. The attack can be executed remotely. The exploit has been made public and could be used. This...

8.6CVSS0.04989EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2026/02/10 12:0 a.m.8 views

PT-2026-7209

Name of the Vulnerable Software and Affected Versions D-Link DCS-931L versions up to 1.13.0 Description A flaw exists in D-Link DCS-931L up to version 1.13.0 that allows for operating system command injection. This occurs through manipulation of the AdminID argument within the /goform/setSysAdmin...

8.6CVSS6.9AI score0.04989EPSS
Exploits1References9
OSV
OSV
added 2026/02/09 10:15 a.m.6 views

CVE-2026-2227

A vulnerability was found in D-Link DCS-931L up to 1.13.0. Impacted is the function doSystem of the file /setSystemAdmin. Performing a manipulation of the argument AdminID results in command injection. The attack may be initiated remotely. The exploit has been made public and could be used. This...

7.2CVSS5.6AI score0.05351EPSS
Exploits1References6
NVD
NVD
added 2026/02/09 10:15 a.m.17 views

CVE-2026-2227

A vulnerability was found in D-Link DCS-931L up to 1.13.0. Impacted is the function doSystem of the file /setSystemAdmin. Performing a manipulation of the argument AdminID results in command injection. The attack may be initiated remotely. The exploit has been made public and could be used. This...

7.2CVSS0.05351EPSS
Exploits1References6
ATTACKERKB
ATTACKERKB
added 2026/02/09 10:2 a.m.4 views

CVE-2026-2227

A vulnerability was found in D-Link DCS-931L up to 1.13.0. Impacted is the function doSystem of the file /setSystemAdmin. Performing a manipulation of the argument AdminID results in command injection. The attack may be initiated remotely. The exploit has been made public and could be used. This...

5.8CVSS5.4AI score0.05351EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2026/02/09 10:2 a.m.35 views

CVE-2026-2227 D-Link DCS-931L setSystemAdmin doSystem command injection

A vulnerability was found in D-Link DCS-931L up to 1.13.0. Impacted is the function doSystem of the file /setSystemAdmin. Performing a manipulation of the argument AdminID results in command injection. The attack may be initiated remotely. The exploit has been made public and could be used. This...

5.8CVSS0.05351EPSS
Exploits1References6
CVE
CVE
added 2026/02/09 10:2 a.m.15 views

CVE-2026-2227

CVE-2026-2227 affects D-Link DCS-931L devices

7.2CVSS5.4AI score0.05351EPSS
Exploits1References6Affected Software1
OSV
OSV
added 2026/02/09 6:16 a.m.7 views

CVE-2026-2218

A vulnerability was determined in D-Link DCS-933L up to 1.14.11. This affects an unknown function of the file /setSystemAdmin of the component alphapd. This manipulation of the argument AdminID causes command injection. Remote exploitation of the attack is possible. The exploit has been publicly...

8.8CVSS5.5AI score0.03454EPSS
Exploits1References6
NVD
NVD
added 2026/02/09 6:16 a.m.9 views

CVE-2026-2218

A vulnerability was determined in D-Link DCS-933L up to 1.14.11. This affects an unknown function of the file /setSystemAdmin of the component alphapd. This manipulation of the argument AdminID causes command injection. Remote exploitation of the attack is possible. The exploit has been publicly...

8.8CVSS0.03454EPSS
Exploits1References6
ATTACKERKB
ATTACKERKB
added 2026/02/09 6:2 a.m.6 views

CVE-2026-2218

A vulnerability was determined in D-Link DCS-933L up to 1.14.11. This affects an unknown function of the file /setSystemAdmin of the component alphapd. This manipulation of the argument AdminID causes command injection. Remote exploitation of the attack is possible. The exploit has been publicly...

6.5CVSS6.1AI score0.03454EPSS
Exploits1References6Affected Software1
Vulnrichment
Vulnrichment
added 2026/02/09 6:2 a.m.5 views

CVE-2026-2218 D-Link DCS-933L alphapd setSystemAdmin command injection

A vulnerability was determined in D-Link DCS-933L up to 1.14.11. This affects an unknown function of the file /setSystemAdmin of the component alphapd. This manipulation of the argument AdminID causes command injection. Remote exploitation of the attack is possible. The exploit has been publicly...

6.5CVSS5.2AI score0.03454EPSS
Exploits1References6
CVE
CVE
added 2026/02/09 6:2 a.m.12 views

CVE-2026-2218

CVE-2026-2218 affects the D-Link DCS-933L firmware up to 1.14.11, targeting the alphapd component. The vulnerability arises from manipulating the AdminID argument in the /setSystemAdmin function, enabling remote command injection. Remote exploitation is possible and the exploit has been publicly ...

8.8CVSS5.1AI score0.03454EPSS
Exploits1References6Affected Software1
Rows per page
Query Builder