EUVD-2016-1316

Malware in sbrugna...

CVE-2024-33772

A buffer overflow vulnerability in /bin/boa on D-Link DIR-619L Rev.B 2.06B1 via formTcpipSetup allows remote authenticated users to trigger a denial of service DoS through the parameter "curTime."...

Code injection

An issue was discovered on D-Link DIR-825 Rev.B 2.10 devices. They allow remote attackers to execute arbitrary commands via the wpsstaenrolleepin parameter in a setstaenrolleepin.cgi POST request. TRENDnet TEW-632BRP 1.010B32 is also affected...

CVE-2020-10214

Affected product: D-Link DIR-825 Rev.B (firmware 2.10). Vulnerability: stack-based buffer overflow in the httpd binary that can be triggered by a POST to ntp_sync.cgi with a sufficiently long ntp_server parameter. Impact: allows an authenticated user to execute arbitrary code on the device. Root ...

CVE-2020-10215

An issue was discovered on D-Link DIR-825 Rev.B 2.10 devices. They allow remote attackers to execute arbitrary commands via the dnsqueryname parameter in a dnsquery.cgi POST request. TRENDnet TEW-632BRP 1.010B32 is also affected...

CVE-2019-9123

An issue was discovered on D-Link DIR-825 Rev.B 2.10 devices. The "user" account has a blank password...

Default credentials

An issue was discovered on D-Link DIR-825 Rev.B 2.10 devices. The "user" account has a blank password...

CVE-2019-9123

CVE-2019-9123 affects D-Link DIR-825 Rev.B 2.10 devices. The issue is an empty password on the 'user' account, enabling remote login over the network. Impact described in sources includes unauthorized access with network vector and high/critical severity. Remediation in the documents includes cha...

CVE-2019-9123

An issue was discovered on D-Link DIR-825 Rev.B 2.10 devices. The "user" account has a blank password...

CVE-2019-9126

CVE-2019-9126 affects D-Link DIR-825 Rev.B 2.10 devices. The vulnerability is an information disclosure through requests to the router_info.xml document, leading to exposure of the device’s PIN code, MAC address, routing table, firmware version, update time, QoS and other LAN/WLAN information. Th...

CVE-2018-20057

An issue was discovered in /bin/boa on D-Link DIR-619L Rev.B 2.06B1 and DIR-605L Rev.B 2.12B1 devices. goform/formSysCmd allows remote authenticated users to execute arbitrary OS commands via the sysCmd POST parameter. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value:...

D-Link DIR-850L REV.A and REV.B Password Retrieval Vulnerability

The D-Link DIR-850L REV.A and REV.B are both wireless router products from AUO D-Link. A security vulnerability exists in D-Link DIR-850L REV.A and REV.B devices using firmware FW114WWb07h2abbeta1 and prior versions and REV.B with firmware FW208WWb02 and prior versions. An attacker could exploit...