Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

OSV
OSVadded 2024/11/05 3:15 p.m.0 views

CVE-2024-51023

D-Link DIR823G 1.0.2B05 was discovered to contain a command injection vulnerability via the Address parameter in the SetNetworkTomographySettings function. This vulnerability allows attackers to execute arbitrary OS commands via a crafted request...

8.8CVSS6AI score
Exploits0References2
OSV
OSVadded 2024/05/14 4:17 p.m.1 views

CVE-2024-34950

D-Link DIR-822+ v1.0.5 was discovered to contain a stack-based buffer overflow vulnerability in the SetNetworkTomographySettings module...

7.5CVSS6.2AI score
Exploits0References1
OSV
OSVadded 2022/11/03 2:15 p.m.2 views

CVE-2022-43109

D-Link DIR-823G v1.0.2 was found to contain a command injection vulnerability in the function SetNetworkTomographySettings. This vulnerability allows attackers to execute arbitrary commands via a crafted packet...

9.8CVSS6AI score0.07961EPSS
Exploits1References2
CNNVD
CNNVDadded 2022/10/13 12:0 a.m.1 views

D-Link COVR 命令注入漏洞

D-Link COVR is a series of routers from China-based AUO D-Link. A security vulnerability exists in the D-Link COVR 1200, 1203 v1.08 versions, which originates from a command injection vulnerability contained via the tomographypingnumber parameter in the function SetNetworkTomographySettings...

8.8CVSS8AI score0.09235EPSS
Exploits1References3
OSV
OSVadded 2022/02/17 9:15 p.m.3 views

CVE-2021-46314

A Remote Command Execution RCE vulnerability exists in HNAP1/control/SetNetworkTomographySettings.php of D-Link Router DIR-846 DIR846A1FW100A43.bin and DIR846enFW100A53DLA-Retail.bin because backticks can be used for command injection when judging whether it is a reasonable domain name...

9.8CVSS5.8AI score0.23473EPSS
Exploits1References2
CNNVD
CNNVDadded 2022/02/17 12:0 a.m.1 views

D-Link DIR-846 操作系统命令注入漏洞

A command execution vulnerability exists in the D-Link DIR-846, a wireless router from D-Link in Taiwan, China, which originates in the product HNAP1/control/SetNetworkTomographySettings.php file. The vulnerability is caused by the fact that the HNAP1/control/SetNetworkTomographySettings.php file...

9.8CVSS5.7AI score0.23473EPSS
Exploits1References4
OSV
OSVadded 2021/07/21 3:15 p.m.2 views

CVE-2020-21935

A command injection vulnerability in HNAP1/GetNetworkTomographySettings of Motorola CX2 router CX 1.0.2 Build 20190508 Rel.97360n allows attackers to execute arbitrary code...

9.8CVSS7.5AI score
Exploits0References2
OSV
OSVadded 2019/01/31 10:29 p.m.3 views

CVE-2019-7297

An issue was discovered on D-Link DIR-823G devices with firmware through 1.02B03. A command Injection vulnerability allows attackers to execute arbitrary OS commands via shell metacharacters in a crafted /HNAP1 request. This occurs when the GetNetworkTomographyResult function calls the system...

9.8CVSS7.5AI score
Exploits0References2
Positive Technologies
Positive Technologiesadded 2018/09/03 12:0 a.m.3 views

PT-2018-3894 · D Link · D-Link Dir-846

Name of the Vulnerable Software and Affected Versions: D-Link DIR-846 version 100.26 Description: The issue exists due to the lack of measures to neutralize special elements used in an operating system command. This can be exploited by a remote attacker to execute arbitrary code. The exploitation...

9CVSS7.4AI score0.03227EPSS
Exploits1References5
Rows per page
Query Builder