Lucene search
K

12 matches found

BDU FSTEC
BDU FSTEC
added 2025/01/22 12:0 a.m.8 views

The vulnerability of the hnap_main function in the D-LINK GO-RT-AC750 router’s software allows a hacker to execute arbitrary commands.

The vulnerability of the hnapmain function in the D-LINK GO-RT-AC750 router’s microprogramming software is related to the lack of measures taken to neutralize special elements used in the operating system commands. Exploiting this vulnerability allows a remote attacker to execute arbitrary comman...

10CVSS8.4AI score0.10327EPSS
Exploits1References3
BDU FSTEC
BDU FSTEC
added 2025/01/09 12:0 a.m.8 views

The vulnerability of the hnap_main() function in D-LINK DIR-806 wireless router software allows a hacker to execute arbitrary commands, gain unauthorized access to protected information, or cause service failures.

The vulnerability of the hnapmain function in D-LINK DIR-806 wireless routers is related to the lack of measures taken to neutralize special elements used in the operating system commands. Exploiting this vulnerability allows an attacker to execute arbitrary commands remotely, gain unauthorized...

10CVSS8.3AI score0.19442EPSS
Exploits1References6
BDU FSTEC
BDU FSTEC
added 2024/07/22 12:0 a.m.10 views

The vulnerability of the hnap_main function in the D-LINK GO-RT-AC750 router software allows a hacker to cause a service failure.

The vulnerability of the hnapmain function in the D-LINK GO-RT-AC750 router’s software lies in the fact that the operation results are stored outside of the buffer in memory. Exploiting this vulnerability allows a malicious actor to cause a service failure by sending specially crafted POST reques...

8CVSS5.7AI score0.00879EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologies
added 2024/04/14 12:0 a.m.4 views

PT-2024-3333 · D Link · D-Link Dir-845L

Name of the Vulnerable Software and Affected Versions: D-Link DIR-845L router version 1.01KRb03 and before Description: The issue is related to a command injection vulnerability via the hnap main function. This vulnerability is associated with the failure to neutralize special elements used in th...

7.5CVSS8AI score0.06457EPSS
Exploits1References19
OSV
OSV
added 2022/08/28 5:15 p.m.2 views

CVE-2022-37056

D-Link GO-RT-AC750 GORTAC750revAv101b03 and GO-RT-AC750revBFWv200b02 is vulnerable to Command Injection via /cgibin, hnapmain,...

9.8CVSS5.8AI score
Exploits0References3
Vulnrichment
Vulnrichment
added 2022/08/28 4:5 p.m.2 views

CVE-2022-37055

D-Link Go-RT-AC750 GORTAC750revAv101b03 and GO-RT-AC750revBFWv200b02 are vulnerable to Buffer Overflow via cgibin, hnapmain,...

6.7AI score0.57037EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2022/08/28 12:0 a.m.5 views

PT-2022-23772

Name of the Vulnerable Software and Affected Versions D-Link Go-RT-AC750 versions GORTAC750 revA v101b03 and GO-RT-AC750 revB FWv200b02 Description The D-Link Go-RT-AC750 is susceptible to a buffer overflow condition. This issue is triggered through the cgibin and hnap main components...

9.8CVSS9AI score0.57037EPSS
Exploits1References20
Positive Technologies
Positive Technologies
added 2022/08/28 12:0 a.m.5 views

PT-2022-7699

Name of the Vulnerable Software and Affected Versions D-Link GO-RT-AC750 versions GORTAC750 revA v101b03 through GO-RT-AC750 revB FWv200b02 Description The issue is related to the hnap main function of the D-Link GO-RT-AC750 router's firmware, which fails to neutralize special elements used in an...

10CVSS9.9AI score0.10327EPSS
Exploits1References16
OSV
OSV
added 2022/03/31 9:15 p.m.3 views

CVE-2021-43722

D-Link DIR-645 1.03 A1 is vulnerable to Buffer Overflow. The hnapmain function in the cgibin handler uses sprintf to format the soapaction header onto the stack and has no limit on the size...

9.8CVSS5.8AI score0.03114EPSS
Exploits1References2
CNVD
CNVD
added 2019/09/09 12:0 a.m.2 views

D-link DIR-806 Stack Buffer Overflow Vulnerability

The Dlink DIR-806 is a wireless AC1200 dual-band router. A stack buffer overflow vulnerability exists in hnapmain in /htdocs/cgibin of the D-link DIR-806. The vulnerability can be exploited to run shellcode via a long HTTP header starting with "SOAPAction:...

10CVSS7.3AI score0.02289EPSS
Exploits1References1
OSV
OSV
added 2019/09/06 8:15 p.m.4 views

CVE-2019-10892

An issue was discovered in D-Link DIR-806 devices. There is a stack-based buffer overflow in function hnapmain at /htdocs/cgibin. The function will call sprintf without checking the length of strings in parameters given by HTTP header and can be controlled by users. And it finally leads to a...

9.8CVSS7.7AI score0.02289EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2019/09/06 12:0 a.m.5 views

PT-2019-6464 · D Link · D-Link Dir-806

Name of the Vulnerable Software and Affected Versions: D-Link DIR-806 devices affected versions not specified Description: An issue was discovered in D-Link DIR-806 devices, where there is a command injection in the hnap main function. This function calls system without checking the parameter tha...

10CVSS10AI score0.19442EPSS
Exploits1References13
Rows per page
Query Builder