46 matches found
CVE-2023-25282
A heap overflow vulnerability in D-Link DIR820LA1FW106B02 allows attackers to cause a denial of service via the config.logtosyslog and logoptdropPackets parameters to mydlinkapi.ccp...
EUVD-2017-5920
Malware in sbrugna...
EUVD-2018-19414
Malware in sbrugna...
EUVD-2017-5921
Malware in sbrugna...
EUVD-2017-5922
Malware in sbrugna...
D-Link DCS-825L 安全漏洞
The D-Link DCS-825L is a wireless webcam from China AUO D-Link. A security vulnerability exists in the D-Link DCS-825L version 1.08.01 and earlier, which stems from the mydlink-watch-dog.sh script that does not verify binary integrity, which could lead to persistent arbitrary code execution...
CVE-2025-55581
CVE-2025-55581 affects the D-Link DCS-825L firmware (1.08.01 and possibly earlier). The vulnerability lies in the mydlink-watch-dog.sh watchdog script, which restarts the dcp and signalc binaries without validating their integrity, origin, or permissions. An attacker with filesystem access (for e...
CVE-2023-41226
D-Link DIR-3040 prog.cgi SetMyDLinkRegistration Stack-Based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-3040 routers. Authentication is required to exploit this...
PT-2023-2358 · D Link · D-Link Dir820La1
Name of the Vulnerable Software and Affected Versions: D-Link DIR820LA1 versions prior to FW106B02 Description: The issue is related to a heap overflow vulnerability in the D-Link DIR820LA1 router's firmware. This vulnerability can be exploited by a remote attacker to cause a denial of service. T...
CVE-2022-46588
TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the sysservice parameter in the setupwizardmydlink sub4104B8 function...
CVE-2022-46597
TRENDnet TEW755AP 1.13B01 was discovered to contain a command injection vulnerability via the sysservice parameter in the setupwizardmydlink sub4104B8 function...
PT-2022-27915 · Trendnet · Trendnet Tew755Ap
Name of the Vulnerable Software and Affected Versions: TRENDnet TEW755AP version 1.13B01 Description: A stack overflow issue was discovered via the sys service parameter in the setup wizard mydlink function, specifically in the sub 4104B8 function. Recommendations: For TRENDnet TEW755AP version...
PT-2022-27924 · Trendnet · Trendnet Tew755Ap
Name of the Vulnerable Software and Affected Versions: TRENDnet TEW755AP version 1.13B01 Description: A command injection issue was found in the setup wizard mydlink function, specifically via the sys service parameter in the sub 4104B8 function. Recommendations: For TRENDnet TEW755AP version...
TRENDnet TEW-755AP 缓冲区错误漏洞
The TRENDnet TEW-755AP is a router from TRENDnet. The TRENDnet TEW-755AP suffers from a stack overflow vulnerability that stems from a lack of size checking of input data in the sysservice parameter of the setupwizardmydlink sub4104B8 function, which can be exploited by an attacker to execute...
D-Link Cloud Camera Flaw Gives Hackers Access to Video Stream
D-Link has only partially patched critical flaws affecting its consumer WiFi camera, which allow hackers to intercept and view recorded video. They also allow attackers to manipulate the device’s firmware, according to security researchers. The camera in question is D-Link’s DCS-2132L cloud camer...
D-Link Router Information Disclosure Vulnerability
D-Link is a company specializing in the design and development of computer network equipment.D-Link DIR-817LW etc. is a wireless router from D-Link in Taiwan, China. An information disclosure vulnerability exists in the D-Link router. The vulnerability stems from the fact that D-Link routers with...
Authentication flaw
D-Link routers with the mydlink feature have some web interfaces without authentication requirements. An attacker can remotely obtain users' DNS query logs and login logs. Vulnerable targets include but are not limited to the latest firmware versions of DIR-817LW A1-1.04, DIR-816L B1-2.06, DIR-81...
CVE-2019-7642
D-Link routers with the mydlink feature have some web interfaces without authentication requirements. An attacker can remotely obtain users' DNS query logs and login logs. Vulnerable targets include but are not limited to the latest firmware versions of DIR-817LW A1-1.04, DIR-816L B1-2.06, DIR-81...
CVE-2019-7642
D-Link routers with the mydlink feature have some web interfaces without authentication requirements. An attacker can remotely obtain users' DNS query logs and login logs. Vulnerable targets include but are not limited to the latest firmware versions of DIR-817LW A1-1.04, DIR-816L B1-2.06, DIR-81...
CVE-2019-7642
D-Link routers with the mydlink feature have some web interfaces without authentication requirements. An attacker can remotely obtain users' DNS query logs and login logs. Vulnerable targets include but are not limited to the latest firmware versions of DIR-817LW A1-1.04, DIR-816L B1-2.06, DIR-81...