CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OS Command injection vulnerability in D-Link DIR-867 DIR867FW1.30B07 allows attackers to execute arbitrary commands via a crafted LocalIPAddress parameter for the SetVirtualServerSettings to HNAP1...

9.8CVSS8AI score0.04175EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 4:29 p.m.•6 views

CVE-2020-21016

D-Link DIR-846 devices with firmware 100A35 allow remote attackers to execute arbitrary code as root via HNAP1/control/SetGuestWLanSettings.php...

9.8CVSS8.3AI score0.10392EPSS

Exploits1

RedhatCVE•added 2025/05/22 3:49 p.m.•6 views

CVE-2020-21936

An issue in HNAP1/GetMultipleHNAPs of Motorola CX2 router CX 1.0.2 Build 20190508 Rel.97360n allows attackers to access the components GetStationSettings, GetWebsiteFilterSettings and GetNetworkSettings without authentication...

5.3CVSS6.9AI score0.00223EPSS

Exploits1

RedhatCVE•added 2025/05/22 3:19 p.m.•3 views

CVE-2020-21935

A command injection vulnerability in HNAP1/GetNetworkTomographySettings of Motorola CX2 router CX 1.0.2 Build 20190508 Rel.97360n allows attackers to execute arbitrary code...

9.8CVSS8.1AI score0.0334EPSS

Exploits1

RedhatCVE•added 2025/05/22 10:20 a.m.•4 views

CVE-2019-15528

An issue was discovered on D-Link DIR-823G devices with firmware V1.0.2B05. There is a command injection in HNAP1 exploitable with Authentication via shell metacharacters in the Interface field to SetStaticRouteSettings...

9CVSS7.7AI score0.03084EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 4:27 a.m.•5 views

CVE-2019-13481

An issue was discovered on D-Link DIR-818LW devices with firmware 2.06betab01. There is a command injection in HNAP1 exploitable with Authentication via shell metacharacters in the MTU field to SetWanSettings...

9CVSS7.7AI score0.09015EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 4:25 a.m.•5 views

CVE-2019-13128

An issue was discovered on D-Link DIR-823G devices with firmware 1.02B03. There is a command injection in HNAP1 exploitable with Authentication via shell metacharacters in the IPAddress or Gateway field to SetStaticRouteSettings...

9CVSS7.7AI score0.12086EPSS

Exploits1References1

BDU FSTEC•added 2023/07/13 12:0 a.m.•1 views

The vulnerability of the HNAP1 protocol implementation in the microprogramming-based router software of D–Link DIR-823G allows a attacker to cause a service failure.

The vulnerability of the HNAP1 protocol implementation in the microprogrammed software for D–Link DIR-823G routers is related to the escape operation from the buffer boundaries in memory when processing the SetParentsControlInfo parameter. Exploiting this vulnerability allows a remote attacker to...

6.3CVSS0.00745EPSS

Exploits1References4Affected Software1

CNNVD•added 2021/07/21 12:0 a.m.•1 views

Motorola CX2 访问控制错误漏洞

The Motorola CX2 is a wireless router from Motorola USA. A security vulnerability in HNAP1 GetMultipleHNAPs in the Motorola CX2 router CX can be exploited to allow an attacker to access the components GetStationSettings, GetWebsiteFilterSettings and GetNetworkSettings without authentication...

5.3CVSS5.8AI score0.00223EPSS

Exploits1References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by