6 matches found
CVE-2023-43204
D-LINK DWL-6610 FWv4.3.0.8B003C was discovered to contain a command injection vulnerability in the function sub2EF50. This vulnerability allows attackers to execute arbitrary commands via the manual-time-string parameter...
CVE-2023-43206
D-LINK DWL-6610 FWv4.3.0.8B003C was discovered to contain a command injection vulnerability in the function webcertdownloadhandler. This vulnerability allows attackers to execute arbitrary commands via the certDownload parameter...
Stack overflow
D-LINK DWL-6610 FWv4.3.0.8B003C was discovered to contain a stack overflow vulnerability in the function updateusers...
Command injection
D-LINK DWL-6610 FWv4.3.0.8B003C was discovered to contain a command injection vulnerability in the function sub2EF50. This vulnerability allows attackers to execute arbitrary commands via the manual-time-string parameter...
CVE-2023-43207
The CVE-2023-43207 issue affects D-LINK DWL-6610 FW 4.3.0.8B003C, exposing a command-injection in the config_upload_handler via the configRestore parameter, enabling arbitrary command execution. The root cause is improper handling/neutralization of OS commands issued through configRestore. Impact...
CVE-2023-43203
D-Link DWL-6610(DWL-6610AP) firmware FW v4.3.0.8B003C contains a stack/ buffer overflow in the update_users function. Root cause: improper input handling in update_users leads to overflow. Impact: potential compromise of confidentiality, integrity, and availability; risk evaluated as high/critica...