107 matches found
CVE-2026-42374
D-Link DIR-600L Hardware Revision B1 End-of-Life contains a hardcoded telnet backdoor. The device starts a telnet daemon at boot via /bin/telnetd.sh with the username "Alphanetworks" and the static password "wrgn61dlwbrdir600L" read from /etc/alphaconfig/imagesign. The custom telnetd binary accep...
CVE-2026-42375
D-Link DIR-600L A1 (End-of-Life) is affected by CVE-2026-42375 due to a hardcoded telnet backdoor. The device runs a telnet daemon at boot via /bin/telnetd.sh with the username "Alphanetworks" and the static password read from /etc/alpha_config/image_sign. The custom telnetd binary accepts a -u u...
CVE-2026-42375 D-Link DIR-600L A1 Hardcoded Telnet Backdoor Credentials
D-Link DIR-600L Hardware Revision A1 End-of-Life contains a hardcoded telnet backdoor. The device starts a telnet daemon at boot via /bin/telnetd.sh with the username "Alphanetworks" and the static password "wrgn35dlwbrdir600l" read from /etc/alphaconfig/imagesign. The custom telnetd binary accep...
CVE-2026-42374
D-Link DIR-600L Hardware Revision B1 End-of-Life contains a hardcoded telnet backdoor. The device starts a telnet daemon at boot via /bin/telnetd.sh with the username "Alphanetworks" and the static password "wrgn61dlwbrdir600L" read from /etc/alphaconfig/imagesign. The custom telnetd binary accep...
EUVD-2026-27025
D-Link DIR-600L Hardware Revision B1 End-of-Life contains a hardcoded telnet backdoor. The device starts a telnet daemon at boot via /bin/telnetd.sh with the username "Alphanetworks" and the static password "wrgn61dlwbrdir600L" read from /etc/alphaconfig/imagesign. The custom telnetd binary accep...
D-Link DIR-600L 信任管理问题漏洞
The D-Link DIR-600L is an entry-level wireless router from D-Link Corporation. It supports 150Mbps wireless transmission and has 4 Gigabit wired ports. The DIR-600L has a trust management vulnerability, which stems from a hard-coded telnet backdoor. This vulnerability could allow unauthenticated...
EUVD-2025-13577
Malicious code in bioql PyPI...
EUVD-2025-13572
Malicious code in bioql PyPI...
EUVD-2025-13589
Malicious code in bioql PyPI...
EUVD-2025-13518
Malicious code in bioql PyPI...
EUVD-2025-13586
Malicious code in bioql PyPI...
EUVD-2025-13494
Malicious code in bioql PyPI...
EUVD-2025-13581
Malicious code in bioql PyPI...
EUVD-2025-13574
Malicious code in bioql PyPI...
D-Link DIR-600L formEasySetupWizard function buffer overflow vulnerability
The D-Link DIR-600L is a wireless router from China-based AUO D-Link. The D-Link DIR-600L suffers from a buffer overflow vulnerability that originates from the parameter host of the function formEasySetupWizard that fails to correctly validate the length and size of the input data, which can be...
D-Link DIR-600L wake_on_lan Function Command Injection Vulnerability
The D-Link DIR-600L is a wireless router from China's AUO D-Link. The D-Link DIR-600L suffers from a command injection vulnerability that stems from the wakeonlan function parameter host failing to correctly filter constructed command special characters, commands, etc. The vulnerability can be...
D-Link DIR-600L formSysCmd Function Command Injection Vulnerability
The D-Link DIR-600L is an entry-level wireless router from China-based AUO D-Link that supports 150Mbps wireless transmission and four 100Gbps wired ports. The D-Link DIR-600L suffers from a command injection vulnerability that stems from the formSysCmd function parameter host failing to properly...
D-Link DIR-600L formSetWAN_Wizard534 Function Buffer Overflow Vulnerability
The D-Link DIR-600L is an entry-level wireless router from China's AUO D-Link that supports 150Mbps wireless transmission and four 100 megabit wired ports. The D-Link DIR-600L suffers from a buffer overflow vulnerability that originates from the parameter host of the formSetWANWizard534 function...
D-Link DIR-600L formSetLog Function Buffer Overflow Vulnerability
The D-Link DIR-600L is a wireless router from China-based AUO D-Link. The D-Link DIR-600L suffers from a buffer overflow vulnerability that originates from the parameter host of the function formSetLog that fails to properly validate the length size of the input data, which can be exploited by an...
The vulnerability of the formEasySetupWizard function in the D-Link DIR-600L router’s microprogramming software allows a hacker to execute arbitrary code.
The vulnerability of the formEasySetupWizard function in the D-Link DIR-600L router’s microprogramming software is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code by using the host...