25 matches found
CVE-2024-28728
Cross Site Scripting vulnerability in DLink DWR 2000M 5G CPE With Wifi 6 Ax1800 and Dlink DWR 5G CPE DWR-2000M1.34ME allows a local attacker to obtain sensitive information via a crafted payload to the WiFi SSID Name field...
CVE-2024-28726
An issue in DLink DWR 2000M 5G CPE With Wifi 6 Ax1800 and Dlink DWR 5G CPE DWR-2000M1.34ME allows a local attacker to execute arbitrary code via a crafted payload to the Diagnostics function...
CVE-2024-28729
An issue in DLink DWR 2000M 5G CPE With Wifi 6 Ax1800 and Dlink DWR 5G CPE DWR-2000M1.34ME allows a local attacker to execute arbitrary code via a crafted request...
CVE-2024-28731
Cross Site Request Forgery vulnerability in DLink DWR 2000M 5G CPE With Wifi 6 Ax1800 and Dlink DWR 5G CPE DWR-2000M1.34ME allows a local attacker to obtain sensitive information via the Port forwarding option...
CVE-2024-28730
Cross Site Scripting vulnerability in DLink DWR 2000M 5G CPE With Wifi 6 Ax1800 and Dlink DWR 5G CPE DWR-2000M1.34ME allows a local attacker to obtain sensitive information via the file upload feature of the VPN configuration module...
CVE-2024-28728
Cross Site Scripting vulnerability in DLink DWR 2000M 5G CPE With Wifi 6 Ax1800 and Dlink DWR 5G CPE DWR-2000M1.34ME allows a local attacker to obtain sensitive information via a crafted payload to the WiFi SSID Name field...
CVE-2024-28729
An issue in DLink DWR 2000M 5G CPE With Wifi 6 Ax1800 and Dlink DWR 5G CPE DWR-2000M1.34ME allows a local attacker to execute arbitrary code via a crafted request...
CVE-2024-28730
Cross Site Scripting vulnerability in DLink DWR 2000M 5G CPE With Wifi 6 Ax1800 and Dlink DWR 5G CPE DWR-2000M1.34ME allows a local attacker to obtain sensitive information via the file upload feature of the VPN configuration module...
CVE-2024-28731
Cross Site Request Forgery vulnerability in DLink DWR 2000M 5G CPE With Wifi 6 Ax1800 and Dlink DWR 5G CPE DWR-2000M1.34ME allows a local attacker to obtain sensitive information via the Port forwarding option...
CVE-2024-28730
Cross Site Scripting vulnerability in DLink DWR 2000M 5G CPE With Wifi 6 Ax1800 and Dlink DWR 5G CPE DWR-2000M1.34ME allows a local attacker to obtain sensitive information via the file upload feature of the VPN configuration module...
CVE-2024-28730
Cross Site Scripting vulnerability in DLink DWR 2000M 5G CPE With Wifi 6 Ax1800 and Dlink DWR 5G CPE DWR-2000M1.34ME allows a local attacker to obtain sensitive information via the file upload feature of the VPN configuration module...
CVE-2024-28729
An issue in DLink DWR 2000M 5G CPE With Wifi 6 Ax1800 and Dlink DWR 5G CPE DWR-2000M1.34ME allows a local attacker to execute arbitrary code via a crafted request...
CVE-2024-28729
Effected product: D-Link DWR-2000M 5G CPE with WiFi 6 Ax1800 (DWR-2000M 1.34ME) and D-Link DWR-2000M 5G CPE (DWR-2000M 1.34ME). Issue: allows a local attacker to execute arbitrary code via a crafted request. Root cause details are not provided in the documents. Impact: high (arbitrary code execut...
CVE-2024-28729
An issue in DLink DWR 2000M 5G CPE With Wifi 6 Ax1800 and Dlink DWR 5G CPE DWR-2000M1.34ME allows a local attacker to execute arbitrary code via a crafted request...
CVE-2024-28731
Cross Site Request Forgery vulnerability in DLink DWR 2000M 5G CPE With Wifi 6 Ax1800 and Dlink DWR 5G CPE DWR-2000M1.34ME allows a local attacker to obtain sensitive information via the Port forwarding option...
CVE-2024-28728
Cross Site Scripting vulnerability in DLink DWR 2000M 5G CPE With Wifi 6 Ax1800 and Dlink DWR 5G CPE DWR-2000M1.34ME allows a local attacker to obtain sensitive information via a crafted payload to the WiFi SSID Name field...
CVE-2024-28730
Cross Site Scripting vulnerability in DLink DWR 2000M 5G CPE With Wifi 6 Ax1800 and Dlink DWR 5G CPE DWR-2000M1.34ME allows a local attacker to obtain sensitive information via the file upload feature of the VPN configuration module...
CVE-2024-28731
CVE-2024-28731 describes a Cross Site Request Forgery in the D-Link DWR-2000M 5G CPE family (DWR 2000M 5G CPE with Wi‑Fi 6 Ax1800; D-Link DWR-2000M_1.34ME). The vulnerability allows a local attacker to obtain sensitive information via the Port Forwarding option. Documentation consistently identif...
CVE-2024-28730
Summary: CVE-2024-28730 describes a Cross Site Scripting vulnerability in D-Link DWR-2000M family devices (DWR 2000M, 5G CPE with Wifi 6 Ax1800). The issue stems from inadequate input filtering/escaping in the VPN configuration module’s file upload feature, which can be leveraged by a local attac...
CVE-2024-28728
CVE-2024-28728 describes a Cross Site Scripting vulnerability in D-Link DWR-2000M 5G CPE with Wi-Fi 6 Ax1800 and D-Link DWR-2000M_1.34ME. The issue arises from handling of the WiFi SSID Name field, allowing a local attacker to obtain sensitive information via a crafted payload. Affected product/v...