The vulnerability of D-Link DIR-846W router’s microprogramming software lies in the lack of measures to neutralize special elements used in the operating system commands. This allows attackers to execute arbitrary code.

The vulnerability of the D-Link DIR-846W router’s microprogramming software is related to the lack of measures taken to neutralize the special elements used in the operating system commands. Exploiting this vulnerability allows a malicious actor to execute arbitrary code through the...

CVE-2023-41187

D-Link DAP-1325 HNAP Missing Authentication Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. Authentication is not required to exploit this vulnerability. The specific flaw...

CVE-2023-41187

CVE-2023-41187 affects D-Link DAP-1325 via HNAP: missing authentication allows network-adjacent attackers to execute arbitrary code with root privileges. The vulnerability stems from unauthenticated access to the HNAP interface. Documented by NVD and ZDI, with no confirmed exploit status or publi...

D-Link DAP-1325 HNAP Missing Authentication Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the implementation of the HNAP interface. The issue results from the...

D-Link DIR-645 Rev. A Devices Multiple Vulnerabilities (Feb 2015)

D-Link DIR-645 Rev. A devices are prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

CVE-2021-43474

An Access Control vulnerability exists in D-Link DIR-823G REVA1 1.02B05 Lastest via any parameter in the HNAP1 function...

D-Link DIR-645 Router Remote Code Execution Vulnerability

D-Link DIR-645 Wired/Wireless Router allows remote attackers to execute arbitrary commands via a GetDeviceSettings action to the HNAP interface...

The vulnerability of D-Link DIR-823G router’s microprogramming software lies in the lack of measures to clean incoming data in the SetStaticRouteSettings field. This allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of D-Link DIR-823G router’s microprogramming software is related to the lack of measures for cleaning incoming data in the SetStaticRouteSettings field. Exploiting this vulnerability allows a remote attacker to compromise the confidentiality, integrity, and accessibility of the...

CVE-2019-15528

An issue was discovered on D-Link DIR-823G devices with firmware V1.0.2B05. There is a command injection in HNAP1 exploitable with Authentication via shell metacharacters in the Interface field to SetStaticRouteSettings...

D-Link DIR-823G Denial of Service Vulnerability

The D-Link DIR-823G is a wireless router from AUO D-Link of Taiwan, China. An access control error vulnerability exists in /bin/goahead in the D-Link DIR-823G with firmware version 1.02B03. An attacker can exploit this vulnerability to reset the router without authentication, resulting in a denia...

D-link DIR-645 Command Injection - Buffer Overflow Exploit

Exploit for hardware platform in category web applications Exploit Title: DIR-645 D-link Command Injection - Buffer Overflow Type: Command Injection - Buffer Overflow Date: 22/07/2015 Exploit Author: DNO Version: DIR-645 FW 1.04b12 Tested on: linux "ubuntu" CVE : N/A...

D-Link DIR-645 Wired/Wireless Router Stack Buffer Overflow Vulnerability

The D-Link DIR-645 is an adjustable wireless transmit power router product from AUO D-Link. A stack buffer overflow vulnerability exists in the D-Link DIR-645 Wired/Wireless Router Rev. Ax. The vulnerability can be exploited by a remote attacker to execute arbitrary code with the help of a very...

D-Link DIR-645 Wired/Wireless Router OS Command Injection Vulnerability

The D-Link DIR-645 is an adjustable wireless transmit power router product from AUO D-Link. A security vulnerability exists in the D-Link DIR-645 Wired/Wireless Router Rev. Ax. A remote attacker can exploit this vulnerability to execute arbitrary code by performing a GetDeviceSettings operation o...

CVE-2015-2052

Stack-based buffer overflow in the DIR-645 Wired/Wireless Router Rev. Ax with firmware 1.04b12 and earlier allows remote attackers to execute arbitrary code via a long string in a GetDeviceSettings action to the HNAP interface...

CVE-2015-2051

The D-Link DIR-645 Wired/Wireless Router Rev. Ax with firmware 1.04b12 and earlier allows remote attackers to execute arbitrary commands via a GetDeviceSettings action to the HNAP interface...

Design/Logic Flaw

The D-Link DIR-645 Wired/Wireless Router Rev. Ax with firmware 1.04b12 and earlier allows remote attackers to execute arbitrary commands via a GetDeviceSettings action to the HNAP interface...

Stack overflow

Stack-based buffer overflow in the DIR-645 Wired/Wireless Router Rev. Ax with firmware 1.04b12 and earlier allows remote attackers to execute arbitrary code via a long string in a GetDeviceSettings action to the HNAP interface...

CVE-2015-2051

The D-Link DIR-645 Wired/Wireless Router Rev. Ax with firmware 1.04b12 and earlier allows remote attackers to execute arbitrary commands via a GetDeviceSettings action to the HNAP interface...

CVE-2015-2052

Stack-based buffer overflow in the DIR-645 Wired/Wireless Router Rev. Ax with firmware 1.04b12 and earlier allows remote attackers to execute arbitrary code via a long string in a GetDeviceSettings action to the HNAP interface...

EUVD-2015-2165

Stack-based buffer overflow in the DIR-645 Wired/Wireless Router Rev. Ax with firmware 1.04b12 and earlier allows remote attackers to execute arbitrary code via a long string in a GetDeviceSettings action to the HNAP interface...