4 matches found
CVE-2023-41193
D-Link DAP-1325 HNAP SetAPLanSettings SecondaryDNS Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. Authentication is not required to exploit this...
CVE-2023-41194
The CVE-2023-41194 issue affects D-Link DAP-1325 routers, specifically the HNAP SetAPLanSettings endpoint and the SubnetMask parameter. The root cause is insufficient validation of a user-supplied string used in a system call, enabling network-adjacent attackers to execute arbitrary code as root ...
CVE-2023-41193 D-Link DAP-1325 HNAP SetAPLanSettings SecondaryDNS Command Injection Remote Code Execution Vulnerability
D-Link DAP-1325 HNAP SetAPLanSettings SecondaryDNS Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. Authentication is not required to exploit this...
CVE-2023-41188
CVE-2023-41188 affects D-Link DAP-1325 routers. The root cause is improper validation of a user-supplied string in the HNAP1 SOAP endpoint’s SetAPLanSettings DeviceName parameter, leading to remote code execution with root privileges. Exploitation requires network adjacency and no authentication....