Lucene search
K

7 matches found

OSV
OSV
added 2026/02/08 8:15 a.m.3 views

CVE-2026-2142

A weakness has been identified in D-Link DIR-823X 250416. This vulnerability affects the function sub420688 of the file /goform/setqos. Executing a manipulation can lead to os command injection. The attack can be executed remotely. The exploit has been made available to the public and could be us...

7.2CVSS5.7AI score0.05687EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2026/02/08 8:2 a.m.3 views

CVE-2026-2142 D-Link DIR-823X set_qos sub_420688 os command injection

A weakness has been identified in D-Link DIR-823X 250416. This vulnerability affects the function sub420688 of the file /goform/setqos. Executing a manipulation can lead to os command injection. The attack can be executed remotely. The exploit has been made available to the public and could be us...

8.6CVSS6.9AI score0.05687EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2026/02/08 8:2 a.m.5 views

CVE-2026-2142

A weakness has been identified in D-Link DIR-823X 250416. This vulnerability affects the function sub420688 of the file /goform/setqos. Executing a manipulation can lead to os command injection. The attack can be executed remotely. The exploit has been made available to the public and could be us...

8.6CVSS6.9AI score0.05687EPSS
Exploits1References5Affected Software1
CVE
CVE
added 2026/02/08 8:2 a.m.12 views

CVE-2026-2142

CVE-2026-2142 concerns D-Link DIR-823X firmware (build 250416). The vulnerability affects the function sub_420688 in /goform/set_qos, allowing remote OS command injection via manipulation of that function. Public exploit code is available, enabling remote attacks with high impact on confidentiali...

8.6CVSS7AI score0.05687EPSS
Exploits1References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/03/05 12:0 a.m.7 views

The vulnerability of the set_qos() function in the internet.cgi script of the Wavlink AC3000 router microprogramming system allows a hacker to execute arbitrary commands.

The vulnerability of the setqos function in the internet.cgi script of the Wavlink AC3000 WL-WN533A8 router microprogramming system is related to the escape of operations from the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands by sending...

9.1CVSS8.3AI score0.01212EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2025/01/14 3:15 p.m.5 views

CVE-2024-39769

Multiple buffer overflow vulnerabilities exist in the internet.cgi setqos functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to stack-based buffer overflow. An attacker can make an authenticated HTTP request to trigger these vulnerabilities.This...

7.2CVSS6.4AI score0.00845EPSS
Exploits1References2
BDU FSTEC
BDU FSTEC
added 2023/09/14 12:0 a.m.5 views

The vulnerability of the set_qosl function in the Milesight UR32L router software allows a hacker to execute arbitrary code.

The vulnerability of the setqos function in the Milesight UR32L router microprogramming system arises due to a stack-based buffer overflow. Exploiting this vulnerability allows an attacker operating remotely to execute arbitrary code...

8.3CVSS7.9AI score0.0146EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder