36 matches found
EUVD-2019-16522
Malware in sbrugna...
EUVD-2019-16523
Malware in sbrugna...
MAL-2025-6253 Malicious code in dva-update-rce (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis b95ece97aa3f5d58ea4fb2cedc0508d316d19bf5241465748806202bcd86c861 The OpenSSF Package Analysis project identified 'dva-update-rce' @...
Malicious code in dva-loading-show-rce (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 2779c32d64a46ff3b8b9de62cd9161c7b6e0071c4a3103b2a37e949f374467a0 The OpenSSF Package Analysis project identified 'dva-loading-show-rce...
Malicious code in dva-loading-hide-rce (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 236bea5646a5f41a1a00049315bf89b5d58d75f522e1d1dbc8bbc86d85e10919 The OpenSSF Package Analysis project identified 'dva-loading-hide-rce...
MAL-2025-6251 Malicious code in dva-loading-hide-rce (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 236bea5646a5f41a1a00049315bf89b5d58d75f522e1d1dbc8bbc86d85e10919 The OpenSSF Package Analysis project identified 'dva-loading-hide-rce...
CVE-2019-6969
The web interface of the D-Link DVA-5592 20180823 is vulnerable to an authentication bypass that allows an unauthenticated user to have access to sensitive information such as the Wi-Fi password and the phone number if VoIP is in use...
CVE-2019-6968
The web interface of the D-Link DVA-5592 20180823 is vulnerable to XSS because HTML form parameters are directly reflected...
CVE-2020-27862
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DVA-2800 and DSL-2888A routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the dhttpd service, which listens on TCP port 8008 by...
New Tool DVa Detects and Removes Android Malware
Discover DVa, a new tool that detects and removes malware exploiting accessibility features on Android devices. Learn how…...
dva-bv.nl Improper Access Control vulnerability OBB-2422454
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
Logic Flaw Vulnerability in DVA-2800 Management Platform, DSL-2888A Management Platform
AUO Electronic Equipment Shanghai Co., Ltd. is a company that mainly deals with network equipment, wireless equipment, switches and other items. A logic flaw vulnerability exists in the DVA-2800 management platform and DSL-2888A management platform, which can be exploited by attackers to obtain...
CVE-2020-27862
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DVA-2800 and DSL-2888A routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the dhttpd service, which listens on TCP port 8008 by...
CVE-2020-27863
This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of D-Link DVA-2800 and DSL-2888A routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the dhttpd service, which listens on TCP port 80...
CVE-2020-27863
CVE-2020-27863 affects D-Link DVA-2800 and DSL-2888A routers. The flaw is in the dhttpd service (listening on TCP port 8008 by default) where incorrect string-matching logic when accessing protected pages allows network-adjacent attackers to disclose stored credentials without authentication. The...
CVE-2020-27862
CVE-2020-27862 affects D-Link DVA-2800 and DSL-2888A routers. A flaw in the dhttpd service handling of the path parameter allows an unauthenticated, network-adjacent attacker to execute arbitrary code via a system call, with impact on the web server context. The issue is triggered by parsing the ...
D-Link DVA-2800 and DSL-2888A License Issue Vulnerability
The D-Link DVA-2800 and DSL-2888A is a wireless router from D-Link. It provides the ability to connect to a network. An authorization issue vulnerability exists in D-Link DVA-2800 and DSL-2888A firmware version 2.3, which can be exploited by an attacker to disclose stored credentials, leading to...
D-Link DVA-2800 and DSL-2888A 命令注入漏洞
The D-link DSL-2888A is a Unified Services Router from China AUO D-link. A command injection vulnerability exists in the D-Link DVA-2800 and DSL-2888A firmware, which arises from a network system or product that does not properly filter specific elements of externally inputted data during the...
D-Link DVA-5592 Information Disclosure Vulnerability
The D-Link DVA-5592 is a wireless router from AUO D-Link of Taiwan, China. An information disclosure vulnerability exists in the web interface of the D-Link DVA-5592 version 20180823, which can be exploited by an attacker to access sensitive information Wi-Fi passwords and phone numbers...
D-Link DVA-5592 Cross-Site Scripting Vulnerability
The D-Link DVA-5592 is a wireless router from AUO D-Link of Taiwan, China. A cross-site scripting vulnerability exists in the web interface of the D-Link DVA-5592 version 20180823, which can be exploited by an attacker to execute client-side code...