Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9426 matches found

EUVD
EUVDadded 2026/02/08 8:32 a.m.5 views

EUVD-2026-5805

A security vulnerability has been detected in D-Link DIR-823X 250416. This issue affects some unknown processing of the file /goform/setddns of the component DDNS Service. The manipulation of the argument ddnsType/ddnsDomainName/ddnsUserName/ddnsPwd leads to os command injection. The attack is...

8.6CVSS6.7AI score0.00115EPSS
Exploits1References5
CVE
CVEadded 2026/02/08 8:32 a.m.10 views

CVE-2026-2143

CVE-2026-2143 affects D-Link DIR-823X (firmware 250416), targeting the DDNS Service. The vulnerability stems from improper handling of parameters in the /goform/set_ddns file (ddnsType, ddnsDomainName, ddnsUserName, ddnsPwd) enabling remote OS command injection. The issue enables remote execution...

8.6CVSS6.8AI score0.00115EPSS
Exploits1References5Affected Software1
OSV
OSVadded 2026/02/08 8:15 a.m.2 views

CVE-2026-2142

A weakness has been identified in D-Link DIR-823X 250416. This vulnerability affects the function sub420688 of the file /goform/setqos. Executing a manipulation can lead to os command injection. The attack can be executed remotely. The exploit has been made available to the public and could be us...

7.2CVSS5.7AI score
Exploits0References5
EUVD
EUVDadded 2026/02/08 8:2 a.m.2 views

EUVD-2026-5806

A weakness has been identified in D-Link DIR-823X 250416. This vulnerability affects the function sub420688 of the file /goform/setqos. Executing a manipulation can lead to os command injection. The attack can be executed remotely. The exploit has been made available to the public and could be us...

8.6CVSS6.9AI score0.00115EPSS
Exploits1References5
ATTACKERKB
ATTACKERKBadded 2026/02/08 8:2 a.m.4 views

CVE-2026-2142

A weakness has been identified in D-Link DIR-823X 250416. This vulnerability affects the function sub420688 of the file /goform/setqos. Executing a manipulation can lead to os command injection. The attack can be executed remotely. The exploit has been made available to the public and could be us...

8.6CVSS6.9AI score0.00115EPSS
Exploits1References5Affected Software1
Vulnrichment
Vulnrichmentadded 2026/02/08 8:2 a.m.2 views

CVE-2026-2142 D-Link DIR-823X set_qos sub_420688 os command injection

A weakness has been identified in D-Link DIR-823X 250416. This vulnerability affects the function sub420688 of the file /goform/setqos. Executing a manipulation can lead to os command injection. The attack can be executed remotely. The exploit has been made available to the public and could be us...

8.6CVSS6.9AI score0.00115EPSS
Exploits1References5
CVE
CVEadded 2026/02/08 8:2 a.m.5 views

CVE-2026-2142

CVE-2026-2142 concerns D-Link DIR-823X firmware (build 250416). The vulnerability affects the function sub_420688 in /goform/set_qos, allowing remote OS command injection via manipulation of that function. Public exploit code is available, enabling remote attacks with high impact on confidentiali...

8.6CVSS7AI score0.00115EPSS
Exploits1References5Affected Software1
Cvelist
Cvelistadded 2026/02/08 8:2 a.m.24 views

CVE-2026-2142 D-Link DIR-823X set_qos sub_420688 os command injection

A weakness has been identified in D-Link DIR-823X 250416. This vulnerability affects the function sub420688 of the file /goform/setqos. Executing a manipulation can lead to os command injection. The attack can be executed remotely. The exploit has been made available to the public and could be us...

8.6CVSS0.00115EPSS
Exploits1References5
ATTACKERKB
ATTACKERKBadded 2026/02/08 7:2 a.m.4 views

CVE-2026-2140

A vulnerability was identified in Tenda TX9 up to 22.03.02.10multi. Affected by this issue is the function sub4223E0 of the file /goform/setMacFilterCfg. Such manipulation of the argument deviceList leads to buffer overflow. The attack may be launched remotely. The exploit is publicly available a...

9CVSS8.7AI score0.0004EPSS
Exploits1References7Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/02/08 6:32 a.m.4 views

CVE-2026-2139

A vulnerability was determined in Tenda TX9 up to 22.03.02.10multi. Affected by this vulnerability is the function sub432580 of the file /goform/fastsettingwifiset. This manipulation of the argument ssid causes buffer overflow. The attack may be initiated remotely. The exploit has been publicly...

9CVSS8.5AI score0.00112EPSS
Exploits1References6Affected Software1
OSV
OSVadded 2026/02/08 6:16 a.m.1 views

CVE-2026-2137

A vulnerability has been found in Tenda TX3 up to 16.03.13.11multi. This impacts an unknown function of the file /goform/SetIpMacBind. The manipulation of the argument list leads to buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used...

8.7CVSS6.2AI score0.00039EPSS
Exploits1References6
NVD
NVDadded 2026/02/08 6:16 a.m.2 views

CVE-2026-2137

A vulnerability has been found in Tenda TX3 up to 16.03.13.11multi. This impacts an unknown function of the file /goform/SetIpMacBind. The manipulation of the argument list leads to buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used...

9CVSS0.00039EPSS
Exploits1References6
EUVD
EUVDadded 2026/02/08 6:2 a.m.4 views

EUVD-2026-5810

A vulnerability was found in Tenda TX9 up to 22.03.02.10multi. Affected is the function sub42D03C of the file /goform/SetStaticRouteCfg. The manipulation of the argument list results in buffer overflow. The attack can be launched remotely. The exploit has been made public and could be used...

9CVSS8.4AI score0.00039EPSS
Exploits1References6
CVE
CVEadded 2026/02/08 6:2 a.m.5 views

CVE-2026-2138

CVE-2026-2138 affects Tenda TX9 devices (firmware up to 22.03.02.10_multi). The vulnerability is in the function sub_42D03C of /goform/SetStaticRouteCfg, where the argument list manipulation leads to a buffer overflow. This allows remote exploitation and has public PoC/exploit material. Impact is...

9CVSS8.5AI score0.00039EPSS
Exploits1References6Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/02/08 6:2 a.m.5 views

CVE-2026-2138

A vulnerability was found in Tenda TX9 up to 22.03.02.10multi. Affected is the function sub42D03C of the file /goform/SetStaticRouteCfg. The manipulation of the argument list results in buffer overflow. The attack can be launched remotely. The exploit has been made public and could be used...

9CVSS8.4AI score0.00039EPSS
Exploits1References6Affected Software1
CVE
CVEadded 2026/02/08 5:32 a.m.8 views

CVE-2026-2137

This CVE refers to a buffer overflow in Tenda TX3 (up to version 16.03.13.11_multi) involving the /goform/SetIpMacBind function. The vulnerability arises from manipulation of the argument list, enabling a remotely initiated attack. Public disclosure of the exploit is indicated. Affected product i...

9CVSS8.5AI score0.00039EPSS
Exploits1References6Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/02/08 5:32 a.m.4 views

CVE-2026-2137

A vulnerability has been found in Tenda TX3 up to 16.03.13.11multi. This impacts an unknown function of the file /goform/SetIpMacBind. The manipulation of the argument list leads to buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used...

9CVSS8.5AI score0.00039EPSS
Exploits1References6Affected Software1
Vulnrichment
Vulnrichmentadded 2026/02/08 5:32 a.m.2 views

CVE-2026-2137 Tenda TX3 SetIpMacBind buffer overflow

A vulnerability has been found in Tenda TX3 up to 16.03.13.11multi. This impacts an unknown function of the file /goform/SetIpMacBind. The manipulation of the argument list leads to buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used...

9CVSS6.2AI score0.00039EPSS
Exploits1References6
OSV
OSVadded 2026/02/08 2:15 a.m.0 views

CVE-2026-2129

A vulnerability was found in D-Link DIR-823X 250416. Affected by this issue is some unknown functionality of the file /goform/setacstatus. Performing a manipulation of the argument acipaddr/acipstatus/aprandtime results in os command injection. The attack may be initiated remotely. The exploit ha...

7.2CVSS5.7AI score
Exploits0References5
Vulnrichment
Vulnrichmentadded 2026/02/08 1:32 a.m.1 views

CVE-2026-2129 D-Link DIR-823X set_ac_status os command injection

A vulnerability was found in D-Link DIR-823X 250416. Affected by this issue is some unknown functionality of the file /goform/setacstatus. Performing a manipulation of the argument acipaddr/acipstatus/aprandtime results in os command injection. The attack may be initiated remotely. The exploit ha...

8.6CVSS6.8AI score0.00115EPSS
Exploits1References5
Rows per page
Query Builder