Lucene search
K

4 matches found

OSV
OSV
added 2024/10/17 6:15 p.m.6 views

CVE-2024-48634

D-Link DIR882FW130B06 and DIR878 DIR878FW130B08 were discovered to contain a command injection vulnerability via the key parameter in the SetWLanRadioSecurity function. This vulnerability allows attackers to execute arbitrary OS commands via a crafted POST request...

8CVSS6AI score0.16707EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2022/12/23 12:0 a.m.4 views

PT-2022-7092 · D Link · D-Link Dir-878 +1

Name of the Vulnerable Software and Affected Versions: D-Link DIR-882 versions DIR882A1 FW130B06 D-Link DIR-878 versions DIR 878 FW1.30B08 Description: The issue is related to a buffer overflow in the SetWLanRadioSecurity module of the D-Link DIR-882 and DIR-878 wireless router firmware. This can...

8.3CVSS7.5AI score0.01645EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 2022/08/31 11:15 p.m.2 views

CVE-2022-37130

In D-Link DIR-816 A2v1.10CNB04, DIR-878 DIR878FW1.30B08.img a command injection vulnerability occurs in /goform/Diagnosis, after the condition is met, setnum will be spliced into v10 by snprintf, and the system will be executed, resulting in a command injection vulnerability...

9.8CVSS7.3AI score0.26335EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2022/08/31 12:0 a.m.4 views

PT-2022-23828 · D Link · D-Link Dir-878 +1

Name of the Vulnerable Software and Affected Versions: D-Link DIR-816 versions A2 v1.10CNB04 D-Link DIR-878 version DIR 878 FW1.30B08 Description: A command injection issue occurs in the /goform/Diagnosis endpoint, where the setnum variable is spliced into v10 by snprintf, allowing system executi...

9.8CVSS9.7AI score0.26335EPSS
Exploits1References8
Rows per page
Query Builder