25 matches found
CVE-2026-58452
JAIOTlink C492A-W6 Wi-Fi IP cameras running firmware 4.8.30.57701411 contain an OS command injection vulnerability that allows authenticated attackers to achieve remote code execution by supplying a malicious Wireless parameter to the HTTP PUT NetSDK/Factory SetMAC endpoint. Attackers can craft a...
CVE-2026-58453
JAIOTlink C492A-W6 Wi-Fi IP cameras running firmware 4.8.30.57701411 contain a hard-coded credentials vulnerability that allows network-adjacent attackers to gain unauthorized access by using the default admin username with an empty password accepted by the anykaipc HTTP service on port 80...
EUVD-2026-41049
JAIOTlink C492A-W6 Wi-Fi IP cameras running firmware 4.8.30.57701411 contain a hard-coded credentials vulnerability that allows network-adjacent attackers to gain unauthorized access by using the default admin username with an empty password accepted by the anykaipc HTTP service on port 80...
CVE-2026-58453
JAIOTlink C492A-W6 Wi‑Fi IP cameras (firmware 4.8.30.57701411) are affected by CVE-2026-58453 due to hard-coded credentials. An attacker on the network can authenticate to the anyka_ipc HTTP service (port 80) using the default admin username with an empty password, gaining unauthorized access to ...
CVE-2026-58452
JAIOTlink C492A-W6 Wi-Fi IP cameras running firmware 4.8.30.57701411 contain an OS command injection vulnerability that allows authenticated attackers to achieve remote code execution by supplying a malicious Wireless parameter to the HTTP PUT NetSDK/Factory SetMAC endpoint. Attackers can craft a...
EUVD-2026-41048
JAIOTlink C492A-W6 Wi-Fi IP cameras running firmware 4.8.30.57701411 contain an OS command injection vulnerability that allows authenticated attackers to achieve remote code execution by supplying a malicious Wireless parameter to the HTTP PUT NetSDK/Factory SetMAC endpoint. Attackers can craft a...
CVE-2026-58452 JAIOTlink C492A-W6 4.8.30.57701411 OS Command Injection via SetMAC Endpoint
JAIOTlink C492A-W6 Wi-Fi IP cameras running firmware 4.8.30.57701411 contain an OS command injection vulnerability that allows authenticated attackers to achieve remote code execution by supplying a malicious Wireless parameter to the HTTP PUT NetSDK/Factory SetMAC endpoint. Attackers can craft a...
CVE-2026-58452
The CVE covers JAIOTlink C492A-W6 Wi‑Fi IP cameras running firmware 4.8.30.57701411. Affected component is the NetSDK/Factory SetMAC HTTP PUT endpoint. The root cause is an OS command injection where a malicious Wireless parameter (starting with a MAC-like prefix, then a semicolon and a shell pay...
EUVD-2023-47656
Malicious code in bioql PyPI...
The vulnerability of the setMAC function in D-Link DIR-816 A2 microprogrammed router software allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the setMAC function in D-Link DIR-816 A2 router microprogramming software is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality, integrity, and accessibility of the protected...
CVE-2023-43237
D-Link DIR-816 A2 v1.10CNB05 was discovered to contain a stack overflow via parameter macCloneMac in setMAC...
CVE-2023-43237
D-Link DIR-816 A2 v1.10CNB05 was discovered to contain a stack overflow via parameter macCloneMac in setMAC...
Stack overflow
D-Link DIR-816 A2 v1.10CNB05 was discovered to contain a stack overflow via parameter macCloneMac in setMAC...
D-Link DIR-816 A2 Buffer Error Vulnerability
The D-Link DIR-816 A2 is a wireless router from China-based AUO D-Link. A security vulnerability exists in D-Link DIR-816 A2 v1.10CNB05, which stems from a parameter macCloneMac found to contain a stack overflow via setMAC...
PT-2023-5375 · D Link · D-Link Dir-816 A2
Name of the Vulnerable Software and Affected Versions: D-Link DIR-816 A2 version 1.10CNB05 Description: The issue is related to a stack overflow in the setMAC function of the D-Link DIR-816 A2 router's firmware, which can be triggered via the macCloneMac parameter. This can potentially allow a...
CVE-2023-43237
D-Link DIR-816 A2 v1.10CNB05 was discovered to contain a stack overflow via parameter macCloneMac in setMAC...
CVE-2022-36619
In D-link DIR-816 A2v1.10CNB04.img,the network can be reset without authentication via /goform/setMAC...
CVE-2022-36619
CVE-2022-36619 affects D-Link DIR-816 DIR-816 firmware A2_v1.10CNB04.img. The vulnerability, rooted in the /goform/setMAC endpoint, allows an unauthenticated reset of the device over the network. Reported impact aligns with high severity (CVSS 3.1: Network, no user interaction, availability impac...
D-Link DIR-816 访问控制错误漏洞
The D-Link DIR-816 is a wireless router from China-based AUO D-Link. A security vulnerability exists in the D-Link DIR-816 firmware A2v1.10CNB04.img image, which stems from its /goform/setMAC component that allows an attacker to reset the network without authentication...
PT-2022-23511 · D Link · D-Link Dir-816
Name of the Vulnerable Software and Affected Versions: D-link DIR-816 version 1.10CNB04 Description: The issue allows the network to be reset without authentication via the "/goform/setMAC" API endpoint. This affects the ability to secure the network, as unauthorized access can lead to network...