Lucene search
K

15 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-55036

Malicious code in bioql PyPI...

8.8CVSS8.8AI score0.00946EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2024/06/21 12:0 a.m.9 views

The vulnerability of the HTTP-based microprogramming software service of D-Link G416 allows a hacker to execute arbitrary code.

The vulnerability of the HTTP-based microprogramming software used in D-Link G416 routers exists due to the lack of measures taken to neutralize the special elements used in the operating system’s command set. Exploiting this vulnerability allows a malicious actor to execute arbitrary code throug...

8.8CVSS8AI score0.01966EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2024/05/03 3:16 a.m.18 views

CVE-2023-50214

D-Link G416 nodered tar File Handling Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link G416 routers. Authentication is not required to exploit this vulnerability. The specific...

8.8CVSS9.2AI score0.00946EPSS
Exploits0References2
NVD
NVD
added 2024/05/03 3:16 a.m.26 views

CVE-2023-50203

D-Link G416 nodered chmod Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link G416 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists...

8.8CVSS9.2AI score0.00946EPSS
Exploits0References2
NVD
NVD
added 2024/05/03 3:16 a.m.27 views

CVE-2023-50200

D-Link G416 cfgsave backusb Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link G416 routers. Authentication is not required to exploit this vulnerability. The specific flaw exist...

8.8CVSS9.2AI score0.00916EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/05/03 2:14 a.m.30 views

CVE-2023-50217 D-Link G416 awsfile rm Command Injection Remote Code Execution Vulnerability

D-Link G416 awsfile rm Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link G416 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists...

8.8CVSS9.3AI score0.00916EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/05/03 2:14 a.m.26 views

CVE-2023-50216 D-Link G416 awsfile tar File Handling Command Injection Remote Code Execution Vulnerability

D-Link G416 awsfile tar File Handling Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link G416 routers. Authentication is not required to exploit this vulnerability. The specific...

8.8CVSS9.3AI score0.00916EPSS
Exploits0References2
CVE
CVE
added 2024/05/03 2:14 a.m.62 views

CVE-2023-50212

CVE-2023-50212 describes an information-disclosure flaw in the HTTP service of the D-Link G416 router. The issue stems from improper handling of error conditions in the httpd process listening on TCP/80, allowing network-adjacent attackers to access sensitive information without authentication. T...

6.5CVSS4.4AI score0.00514EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2024/05/03 2:14 a.m.31 views

CVE-2023-50212 D-Link G416 httpd Improper Handling of Exceptional Conditions Information Disclosure Vulnerability

D-Link G416 httpd Improper Handling of Exceptional Conditions Information Disclosure Vulnerability. This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of D-Link G416 routers. Authentication is not required to exploit this vulnerability...

4.3CVSS4.7AI score0.00514EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/05/03 2:14 a.m.22 views

CVE-2023-50212 D-Link G416 httpd Improper Handling of Exceptional Conditions Information Disclosure Vulnerability

D-Link G416 httpd Improper Handling of Exceptional Conditions Information Disclosure Vulnerability. This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of D-Link G416 routers. Authentication is not required to exploit this vulnerability...

4.3CVSS6.3AI score0.00514EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/05/03 2:14 a.m.29 views

CVE-2023-50211 D-Link G416 httpd API-AUTH Timestamp Processing Stack-based Buffer Overflow Remote Code Execution Vulnerability

D-Link G416 httpd API-AUTH Timestamp Processing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link G416 routers. Authentication is not required to exploit this...

8.8CVSS7.8AI score0.00637EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/05/03 2:14 a.m.22 views

CVE-2023-50199 D-Link G416 httpd Missing Authentication for Critical Function Remote Code Execution Vulnerability

D-Link G416 httpd Missing Authentication for Critical Function Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of D-Link G416 routers. Authentication is not required to exploit this vulnerability. The...

8.8CVSS7.8AI score0.00696EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2023/12/20 12:0 a.m.20 views

D-Link G416 flupl filename Command Injection Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link G416 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the HTTP service listening on TCP port 80. The issue results from the lack...

8.8CVSS7.5AI score0.00916EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2023/12/20 12:0 a.m.24 views

D-Link G416 nodered File Handling Command Injection Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link G416 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the HTTP service listening on TCP port 80. The issue results from the lack...

8.8CVSS7.5AI score0.00916EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2023/12/20 12:0 a.m.24 views

D-Link G416 awsfile rm Command Injection Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link G416 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the HTTP service listening on TCP port 80. The issue results from the lack...

8.8CVSS7.5AI score0.00916EPSS
Exploits0References1
Rows per page
Query Builder