Lucene search
K

12 matches found

OSV
OSV
added 2026/02/09 3:16 a.m.5 views

CVE-2026-2210

A vulnerability has been found in D-Link DIR-823X 250416. This affects the function sub4211C8 of the file /goform/setfiltering. Such manipulation leads to os command injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used...

7.2CVSS5.5AI score0.03822EPSS
Exploits1References6
CVE
CVE
added 2026/02/09 2:2 a.m.19 views

CVE-2026-2210

CVE-2026-2210 affects D-Link DIR-823X (firmware 250416). The issue is in function sub_4211C8 of /goform/set_filtering, where input manipulation permits OS command injection. Exploitation can be remote over the network, and public disclosure of the exploit is noted. No patch/version details are pr...

8.6CVSS6.8AI score0.03822EPSS
Exploits1References6Affected Software1
NVD
NVD
added 2026/02/08 2:16 p.m.14 views

CVE-2026-2155

A security flaw has been discovered in D-Link DIR-823X 250416. The affected element is the function sub4208A0 of the file /goform/setdmz of the component Configuration Handler. The manipulation of the argument dmzhost/dmzenable results in os command injection. The attack can be executed remotely...

8.6CVSS0.03818EPSS
Exploits1References6
CNNVD
CNNVD
added 2026/02/08 12:0 a.m.8 views

D-Link DIR-823X 操作系统命令注入漏洞

The D-Link DIR-823X is a wireless router produced by D-Link Corporation. The D-Link DIR-823X 250416 version has a vulnerability related to operating system command injection. This vulnerability stems from incorrect operations on the parameters terminaladdr/serverip/serverport in the Configuration...

8.6CVSS7.1AI score0.03916EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2026/02/07 7:31 p.m.8 views

CVE-2026-2061

A vulnerability was determined in D-Link DIR-823X 250416. Affected by this issue is the function sub424D20 of the file /goform/setipv6. Executing a manipulation can lead to os command injection. It is possible to launch the attack remotely. The exploit has been publicly disclosed and may be...

7.2CVSS5AI score0.04296EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/02/06 12:0 a.m.6 views

PT-2026-6760

Name of the Vulnerable Software and Affected Versions D-Link DIR-823X version 250416 Description A flaw exists in the D-Link DIR-823X version 250416 that allows for operating system command injection. This is due to a manipulation possibility within the sub 424D20 function of the /goform/set ipv6...

5.8CVSS5.4AI score0.04296EPSS
Exploits1References7
CVE
CVE
added 2026/01/30 2:32 p.m.22 views

CVE-2026-1685

The CVE-2026-1685 entry concerns D-Link DIR-823X 250416. Affects the Login component, specifically function sub_40AC74, where manipulation leads to improper restriction of excessive authentication attempts. The attack can be performed remotely and is described as high complexity with difficult ex...

6.3CVSS5.5AI score0.00987EPSS
Exploits0References5Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-31454

Malicious code in bioql PyPI...

8.8CVSS6.6AI score0.04125EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2025/09/29 5:50 a.m.16 views

CVE-2025-11098

A vulnerability was found in D-Link DIR-823X 250416. The affected element is an unknown function of the file /goform/setwifiblacklists. The manipulation of the argument macList results in command injection. The attack may be performed from remote. The exploit has been made public and could be use...

8.8CVSS6.6AI score0.04125EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/09/28 4:2 a.m.2 views

CVE-2025-11095 D-Link DIR-823X delete_offline_device command injection

A vulnerability was detected in D-Link DIR-823X 250416. This vulnerability affects unknown code of the file /goform/deleteofflinedevice. Performing manipulation of the argument delvalue results in command injection. Remote exploitation of the attack is possible. The exploit is now public and may ...

6.5CVSS6.8AI score0.04125EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/09/09 2:32 a.m.2 views

CVE-2025-10123 D-Link DIR-823X set_static_leases sub_415028 command injection

A vulnerability was determined in D-Link DIR-823X up to 250416. Affected by this vulnerability is the function sub415028 of the file /goform/setstaticleases. Executing manipulation of the argument Hostname can lead to command injection. The attack can be launched remotely. The exploit has been...

7.5CVSS6.8AI score0.03986EPSS
Exploits1References6
OSV
OSV
added 2025/04/17 3:15 p.m.2 views

CVE-2025-29041

An issue in dlink DIR 823x 240802 allows a remote attacker to execute arbitrary code via the targetaddr key value and the function 0x41710c...

9.8CVSS6.2AI score
Exploits0References3
Rows per page
Query Builder