CVE-2023-41187

D-Link DAP-1325 HNAP Missing Authentication Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. Authentication is not required to exploit this vulnerability. The specific flaw...

CVE-2023-41187

CVE-2023-41187 affects D-Link DAP-1325 via HNAP: missing authentication allows network-adjacent attackers to execute arbitrary code with root privileges. The vulnerability stems from unauthenticated access to the HNAP interface. Documented by NVD and ZDI, with no confirmed exploit status or publi...

D-Link DAP-1325 HNAP Missing Authentication Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the implementation of the HNAP interface. The issue results from the...

D-Link DIR-645 Rev. A Devices Multiple Vulnerabilities (Feb 2015)

D-Link DIR-645 Rev. A devices are prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

CVE-2021-43474

An Access Control vulnerability exists in D-Link DIR-823G REVA1 1.02B05 Lastest via any parameter in the HNAP1 function...

D-Link DIR-645 Router Remote Code Execution Vulnerability

D-Link DIR-645 Wired/Wireless Router allows remote attackers to execute arbitrary commands via a GetDeviceSettings action to the HNAP interface...

CVE-2019-15528

An issue was discovered on D-Link DIR-823G devices with firmware V1.0.2B05. There is a command injection in HNAP1 exploitable with Authentication via shell metacharacters in the Interface field to SetStaticRouteSettings...

D-Link DIR-823G Denial of Service Vulnerability

The D-Link DIR-823G is a wireless router from AUO D-Link of Taiwan, China. An access control error vulnerability exists in /bin/goahead in the D-Link DIR-823G with firmware version 1.02B03. An attacker can exploit this vulnerability to reset the router without authentication, resulting in a denia...

D-link DIR-645 Command Injection - Buffer Overflow Exploit

Exploit for hardware platform in category web applications Exploit Title: DIR-645 D-link Command Injection - Buffer Overflow Type: Command Injection - Buffer Overflow Date: 22/07/2015 Exploit Author: DNO Version: DIR-645 FW 1.04b12 Tested on: linux "ubuntu" CVE : N/A...

D-Link DIR-645 Wired/Wireless Router OS Command Injection Vulnerability

The D-Link DIR-645 is an adjustable wireless transmit power router product from AUO D-Link. A security vulnerability exists in the D-Link DIR-645 Wired/Wireless Router Rev. Ax. A remote attacker can exploit this vulnerability to execute arbitrary code by performing a GetDeviceSettings operation o...

D-Link DIR-645 Wired/Wireless Router Stack Buffer Overflow Vulnerability

The D-Link DIR-645 is an adjustable wireless transmit power router product from AUO D-Link. A stack buffer overflow vulnerability exists in the D-Link DIR-645 Wired/Wireless Router Rev. Ax. The vulnerability can be exploited by a remote attacker to execute arbitrary code with the help of a very...

CVE-2015-2052

Stack-based buffer overflow in the DIR-645 Wired/Wireless Router Rev. Ax with firmware 1.04b12 and earlier allows remote attackers to execute arbitrary code via a long string in a GetDeviceSettings action to the HNAP interface...

CVE-2015-2051

The D-Link DIR-645 Wired/Wireless Router Rev. Ax with firmware 1.04b12 and earlier allows remote attackers to execute arbitrary commands via a GetDeviceSettings action to the HNAP interface...

Stack overflow

Stack-based buffer overflow in the DIR-645 Wired/Wireless Router Rev. Ax with firmware 1.04b12 and earlier allows remote attackers to execute arbitrary code via a long string in a GetDeviceSettings action to the HNAP interface...

Design/Logic Flaw

The D-Link DIR-645 Wired/Wireless Router Rev. Ax with firmware 1.04b12 and earlier allows remote attackers to execute arbitrary commands via a GetDeviceSettings action to the HNAP interface...

EUVD-2015-2165

Stack-based buffer overflow in the DIR-645 Wired/Wireless Router Rev. Ax with firmware 1.04b12 and earlier allows remote attackers to execute arbitrary code via a long string in a GetDeviceSettings action to the HNAP interface...

CVE-2015-2052

Affected : D-Link DIR-645 Wired/Wireless Router Rev. Ax, firmware 1.04b12 and earlier. Vulnerability : stack-based buffer overflow in the HNAP GetDeviceSettings action allows remote attackers to execute arbitrary code via a long string. Impact : remote code execution with full confidentiality, in...

CVE-2015-2051

The D-Link DIR-645 Wired/Wireless Router Rev. Ax with firmware 1.04b12 and earlier allows remote attackers to execute arbitrary commands via a GetDeviceSettings action to the HNAP interface...

CVE-2015-2052

Stack-based buffer overflow in the DIR-645 Wired/Wireless Router Rev. Ax with firmware 1.04b12 and earlier allows remote attackers to execute arbitrary code via a long string in a GetDeviceSettings action to the HNAP interface...

CVE-2015-2051

CVE-2015-2051 describes a remote command execution in D-Link DIR-645 (Wired/Wireless Router) Rev. Ax with firmware 1.04b12 and earlier via the HNAP GetDeviceSettings action. The flaw allows an unauthenticated attacker to trigger arbitrary commands through the HNAP SOAP interface, leading to full ...