32 matches found
CVE-2024-28728
Cross Site Scripting vulnerability in DLink DWR 2000M 5G CPE With Wifi 6 Ax1800 and Dlink DWR 5G CPE DWR-2000M1.34ME allows a local attacker to obtain sensitive information via a crafted payload to the WiFi SSID Name field...
CVE-2024-28726
An issue in DLink DWR 2000M 5G CPE With Wifi 6 Ax1800 and Dlink DWR 5G CPE DWR-2000M1.34ME allows a local attacker to execute arbitrary code via a crafted payload to the Diagnostics function...
CVE-2024-28729
An issue in DLink DWR 2000M 5G CPE With Wifi 6 Ax1800 and Dlink DWR 5G CPE DWR-2000M1.34ME allows a local attacker to execute arbitrary code via a crafted request...
CVE-2024-28731
Cross Site Request Forgery vulnerability in DLink DWR 2000M 5G CPE With Wifi 6 Ax1800 and Dlink DWR 5G CPE DWR-2000M1.34ME allows a local attacker to obtain sensitive information via the Port forwarding option...
CVE-2024-28730
Cross Site Scripting vulnerability in DLink DWR 2000M 5G CPE With Wifi 6 Ax1800 and Dlink DWR 5G CPE DWR-2000M1.34ME allows a local attacker to obtain sensitive information via the file upload feature of the VPN configuration module...
D-Link DWR-2000M Cross-Site Scripting Vulnerability
The D-Link DWR-2000M is a wireless router from China's AUO D-Link. A cross-site scripting vulnerability exists in the D-Link DWR-2000M. The vulnerability stems from the application's lack of effective filtering and escaping of user-supplied data, which can be exploited by an attacker to obtain...
CVE-2024-28730
Cross Site Scripting vulnerability in DLink DWR 2000M 5G CPE With Wifi 6 Ax1800 and Dlink DWR 5G CPE DWR-2000M1.34ME allows a local attacker to obtain sensitive information via the file upload feature of the VPN configuration module...
CVE-2024-28729
An issue in DLink DWR 2000M 5G CPE With Wifi 6 Ax1800 and Dlink DWR 5G CPE DWR-2000M1.34ME allows a local attacker to execute arbitrary code via a crafted request...
CVE-2024-28730
Cross Site Scripting vulnerability in DLink DWR 2000M 5G CPE With Wifi 6 Ax1800 and Dlink DWR 5G CPE DWR-2000M1.34ME allows a local attacker to obtain sensitive information via the file upload feature of the VPN configuration module...
CVE-2024-28731
Cross Site Request Forgery vulnerability in DLink DWR 2000M 5G CPE With Wifi 6 Ax1800 and Dlink DWR 5G CPE DWR-2000M1.34ME allows a local attacker to obtain sensitive information via the Port forwarding option...
CVE-2024-28728
Cross Site Scripting vulnerability in DLink DWR 2000M 5G CPE With Wifi 6 Ax1800 and Dlink DWR 5G CPE DWR-2000M1.34ME allows a local attacker to obtain sensitive information via a crafted payload to the WiFi SSID Name field...
CVE-2024-28729
An issue in DLink DWR 2000M 5G CPE With Wifi 6 Ax1800 and Dlink DWR 5G CPE DWR-2000M1.34ME allows a local attacker to execute arbitrary code via a crafted request...
CVE-2024-28729
An issue in DLink DWR 2000M 5G CPE With Wifi 6 Ax1800 and Dlink DWR 5G CPE DWR-2000M1.34ME allows a local attacker to execute arbitrary code via a crafted request...
D-Link DWR-2000M 安全漏洞
The D-Link DWR-2000M is a wireless router from China AUO D-Link. A security vulnerability exists in the D-Link DWR-2000M. A local attacker could exploit the vulnerability to obtain sensitive information via the port forwarding option...
D-Link DWR-2000M 命令注入漏洞
The D-Link DWR-2000M is a wireless router from China AUO D-Link. A security vulnerability exists in the D-Link DWR-2000M. A local attacker can exploit the vulnerability to execute arbitrary code by sending a crafted payload to the diagnostic function...
CVE-2024-28728
CVE-2024-28728 describes a Cross Site Scripting vulnerability in D-Link DWR-2000M 5G CPE with Wi-Fi 6 Ax1800 and D-Link DWR-2000M_1.34ME. The issue arises from handling of the WiFi SSID Name field, allowing a local attacker to obtain sensitive information via a crafted payload. Affected product/v...
CVE-2024-28730
Summary: CVE-2024-28730 describes a Cross Site Scripting vulnerability in D-Link DWR-2000M family devices (DWR 2000M, 5G CPE with Wifi 6 Ax1800). The issue stems from inadequate input filtering/escaping in the VPN configuration module’s file upload feature, which can be leveraged by a local attac...
CVE-2024-28731
CVE-2024-28731 describes a Cross Site Request Forgery in the D-Link DWR-2000M 5G CPE family (DWR 2000M 5G CPE with Wi‑Fi 6 Ax1800; D-Link DWR-2000M_1.34ME). The vulnerability allows a local attacker to obtain sensitive information via the Port Forwarding option. Documentation consistently identif...
CVE-2024-28729
Effected product: D-Link DWR-2000M 5G CPE with WiFi 6 Ax1800 (DWR-2000M 1.34ME) and D-Link DWR-2000M 5G CPE (DWR-2000M 1.34ME). Issue: allows a local attacker to execute arbitrary code via a crafted request. Root cause details are not provided in the documents. Impact: high (arbitrary code execut...
CVE-2024-28726
CVE-2024-28726 affects D-Link DWR-2000M 5G CPE with WiFi 6 Ax1800 and D-Link DWR-2000M 1.34ME. A local attacker can execute arbitrary code by sending a crafted payload to the device’s Diagnostics function. Exploitation is described as local with low privileges required and no user interaction, po...