Lucene search
K

4 matches found

NVD
NVD
added 2024/05/03 3:15 a.m.25 views

CVE-2023-41193

D-Link DAP-1325 HNAP SetAPLanSettings SecondaryDNS Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. Authentication is not required to exploit this...

8.8CVSS9.1AI score0.01187EPSS
Exploits0References2
CVE
CVE
added 2024/05/03 2:11 a.m.95 views

CVE-2023-41194

The CVE-2023-41194 issue affects D-Link DAP-1325 routers, specifically the HNAP SetAPLanSettings endpoint and the SubnetMask parameter. The root cause is insufficient validation of a user-supplied string used in a system call, enabling network-adjacent attackers to execute arbitrary code as root ...

8.8CVSS9.1AI score0.01187EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2024/05/03 2:11 a.m.37 views

CVE-2023-41193 D-Link DAP-1325 HNAP SetAPLanSettings SecondaryDNS Command Injection Remote Code Execution Vulnerability

D-Link DAP-1325 HNAP SetAPLanSettings SecondaryDNS Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. Authentication is not required to exploit this...

8.8CVSS9.3AI score0.01187EPSS
Exploits0References2
CVE
CVE
added 2024/05/03 2:11 a.m.94 views

CVE-2023-41188

CVE-2023-41188 affects D-Link DAP-1325 routers. The root cause is improper validation of a user-supplied string in the HNAP1 SOAP endpoint’s SetAPLanSettings DeviceName parameter, leading to remote code execution with root privileges. Exploitation requires network adjacency and no authentication....

8.8CVSS9.1AI score0.01187EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder