CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

668 matches found

RedhatCVE•added 2026/05/12 8:20 a.m.•5 views

CVE-2026-8260

A vulnerability was found in D-Link DCS-935L up to 1.10.01. The impacted element is the function SetDeviceSettings of the file /web/cgi-bin/hnap/hnapservice of the component HNAP Service. The manipulation of the argument AdminPassword results in buffer overflow. The attack can be executed remotel...

9CVSS7.6AI score0.00023EPSS

Exploits2References1

GithubExploit•added 2026/05/11 10:16 a.m.•68 views

Exploit for CVE-2026-8260

CVE-2026-8260 Overview A buffer overflow vulnerability af...

9CVSS7.6AI score0.00023EPSS

Exploits2

EUVD•added 2026/05/11 3:31 a.m.•8 views

EUVD-2026-29016

9CVSS7.6AI score0.00023EPSS

Exploits2References6

CVE•added 2026/05/11 1:15 a.m.•10 views

CVE-2026-8260

Technical details about CVE-2026-8260 are not publicly available in the provided documents. Monitor for updates from official advisories. The initial description states the vulnerability exists in D-Link DCS-935L HNAP service SetDeviceSettings buffer overflow.

9CVSS7.6AI score0.00023EPSS

Exploits2References5Affected Software1

Cvelist•added 2026/05/11 1:15 a.m.•35 views

CVE-2026-8260 D-Link DCS-935L HNAP Service hnap_service SetDeviceSettings buffer overflow

9CVSS0.00023EPSS

Exploits2References5

CNNVD•added 2026/05/11 12:0 a.m.•6 views

D-Link DCS-935L 缓冲区错误漏洞

The D-Link DCS-935L is a router produced by D-Link Corporation. Versions of the D-Link DCS-935L prior to 1.10.01 contain a buffer error vulnerability. This vulnerability stems from the operation of the AdminPassword parameter in the SetDeviceSettings function within the HNAP Service component,...

9CVSS7.7AI score0.00023EPSS

Exploits2References2

Vulnrichment•added 2025/11/19 12:0 a.m.•2 views

CVE-2025-63932

D-Link Router DIR-868L A1 FW106KRb01.bin has an unauthenticated remote code execution vulnerability in the cgibin binary. The HNAP service provided by cgibin does not filter the HTTP SOAPAction header field. The unauthenticated remote attacker can execute the shell command...

8.1AI score0.00579EPSS

Exploits1References3

Positive Technologies•added 2025/11/19 12:0 a.m.•3 views

PT-2025-47527

Name of the Vulnerable Software and Affected Versions D-Link Router DIR-868L version FW106KRb01 Description The D-Link Router DIR-868L version FW106KRb01 contains a remote code execution issue in the cgibin binary. The HNAP service within cgibin does not properly filter the HTTP SOAPAction header...

7.5CVSS8AI score0.00579EPSS

Exploits1References11

Vulnrichment•added 2025/10/08 6:2 p.m.•2 views

CVE-2025-11488 D-Link DIR-852 HNAP1 command injection

A weakness has been identified in D-Link DIR-852 up to 20251002. This affects an unknown part of the file /HNAP1/. Executing manipulation can lead to command injection. The attack may be launched remotely. The exploit has been made available to the public and could be exploited. This vulnerabilit...

7.5CVSS7.3AI score0.0036EPSS

Exploits0References5

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2019-18501

Malware in sbrugna...

10CVSS9.5AI score0.09273EPSS

Exploits1References2

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2020-29703

Malware in sbrugna...

8.8CVSS8.8AI score0.02441EPSS

Exploits0References3