Lucene search
K

25 matches found

NVD
NVD
added 2 days ago5 views

CVE-2026-58452

JAIOTlink C492A-W6 Wi-Fi IP cameras running firmware 4.8.30.57701411 contain an OS command injection vulnerability that allows authenticated attackers to achieve remote code execution by supplying a malicious Wireless parameter to the HTTP PUT NetSDK/Factory SetMAC endpoint. Attackers can craft a...

8.8CVSS0.02422EPSS
Exploits0References3
NVD
NVD
added 2 days ago4 views

CVE-2026-58453

JAIOTlink C492A-W6 Wi-Fi IP cameras running firmware 4.8.30.57701411 contain a hard-coded credentials vulnerability that allows network-adjacent attackers to gain unauthorized access by using the default admin username with an empty password accepted by the anykaipc HTTP service on port 80...

9.8CVSS0.0169EPSS
Exploits0References3
EUVD
EUVD
added 2 days ago5 views

EUVD-2026-41049

JAIOTlink C492A-W6 Wi-Fi IP cameras running firmware 4.8.30.57701411 contain a hard-coded credentials vulnerability that allows network-adjacent attackers to gain unauthorized access by using the default admin username with an empty password accepted by the anykaipc HTTP service on port 80...

9.8CVSS5.8AI score0.0169EPSS
Exploits0References3
CVE
CVE
added 2 days ago9 views

CVE-2026-58453

JAIOTlink C492A-W6 Wi‑Fi IP cameras (firmware 4.8.30.57701411) are affected by CVE-2026-58453 due to hard-coded credentials. An attacker on the network can authenticate to the anyka_ipc HTTP service (port 80) using the default admin username with an empty password, gaining unauthorized access to ...

9.8CVSS5.8AI score0.0169EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2 days ago4 views

CVE-2026-58452

JAIOTlink C492A-W6 Wi-Fi IP cameras running firmware 4.8.30.57701411 contain an OS command injection vulnerability that allows authenticated attackers to achieve remote code execution by supplying a malicious Wireless parameter to the HTTP PUT NetSDK/Factory SetMAC endpoint. Attackers can craft a...

8.8CVSS6.4AI score0.02422EPSS
Exploits0References4Affected Software1
EUVD
EUVD
added 2 days ago6 views

EUVD-2026-41048

JAIOTlink C492A-W6 Wi-Fi IP cameras running firmware 4.8.30.57701411 contain an OS command injection vulnerability that allows authenticated attackers to achieve remote code execution by supplying a malicious Wireless parameter to the HTTP PUT NetSDK/Factory SetMAC endpoint. Attackers can craft a...

8.8CVSS6.4AI score0.02422EPSS
Exploits0References3
Cvelist
Cvelist
added 2 days ago29 views

CVE-2026-58452 JAIOTlink C492A-W6 4.8.30.57701411 OS Command Injection via SetMAC Endpoint

JAIOTlink C492A-W6 Wi-Fi IP cameras running firmware 4.8.30.57701411 contain an OS command injection vulnerability that allows authenticated attackers to achieve remote code execution by supplying a malicious Wireless parameter to the HTTP PUT NetSDK/Factory SetMAC endpoint. Attackers can craft a...

8.8CVSS0.02422EPSS
Exploits0References3
CVE
CVE
added 2 days ago9 views

CVE-2026-58452

The CVE covers JAIOTlink C492A-W6 Wi‑Fi IP cameras running firmware 4.8.30.57701411. Affected component is the NetSDK/Factory SetMAC HTTP PUT endpoint. The root cause is an OS command injection where a malicious Wireless parameter (starting with a MAC-like prefix, then a semicolon and a shell pay...

8.8CVSS6.4AI score0.02422EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-47656

Malicious code in bioql PyPI...

9.8CVSS9.4AI score0.12242EPSS
Exploits1References2
BDU FSTEC
BDU FSTEC
added 2023/09/25 12:0 a.m.4 views

The vulnerability of the setMAC function in D-Link DIR-816 A2 microprogrammed router software allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the setMAC function in D-Link DIR-816 A2 router microprogramming software is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality, integrity, and accessibility of the protected...

10CVSS7.9AI score0.12242EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2023/09/21 1:15 p.m.16 views

CVE-2023-43237

D-Link DIR-816 A2 v1.10CNB05 was discovered to contain a stack overflow via parameter macCloneMac in setMAC...

9.8CVSS9.7AI score0.12242EPSS
Exploits1References2
OSV
OSV
added 2023/09/21 1:15 p.m.4 views

CVE-2023-43237

D-Link DIR-816 A2 v1.10CNB05 was discovered to contain a stack overflow via parameter macCloneMac in setMAC...

9.8CVSS5.8AI score0.12242EPSS
Exploits1References2
Prion
Prion
added 2023/09/21 1:15 p.m.24 views

Stack overflow

D-Link DIR-816 A2 v1.10CNB05 was discovered to contain a stack overflow via parameter macCloneMac in setMAC...

7.5CVSS9.6AI score0.12242EPSS
Exploits1References2Affected Software1
CNNVD
CNNVD
added 2023/09/21 12:0 a.m.6 views

D-Link DIR-816 A2 Buffer Error Vulnerability

The D-Link DIR-816 A2 is a wireless router from China-based AUO D-Link. A security vulnerability exists in D-Link DIR-816 A2 v1.10CNB05, which stems from a parameter macCloneMac found to contain a stack overflow via setMAC...

9.8CVSS7.2AI score0.12242EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2023/09/21 12:0 a.m.5 views

PT-2023-5375 · D Link · D-Link Dir-816 A2

Name of the Vulnerable Software and Affected Versions: D-Link DIR-816 A2 version 1.10CNB05 Description: The issue is related to a stack overflow in the setMAC function of the D-Link DIR-816 A2 router's firmware, which can be triggered via the macCloneMac parameter. This can potentially allow a...

9.8CVSS9.6AI score0.12242EPSS
Exploits1References9
Vulnrichment
Vulnrichment
added 2023/09/21 12:0 a.m.13 views

CVE-2023-43237

D-Link DIR-816 A2 v1.10CNB05 was discovered to contain a stack overflow via parameter macCloneMac in setMAC...

7.8AI score0.12242EPSS
Exploits1References2
OSV
OSV
added 2022/08/31 11:15 p.m.6 views

CVE-2022-36619

In D-link DIR-816 A2v1.10CNB04.img,the network can be reset without authentication via /goform/setMAC...

7.5CVSS5.8AI score0.01022EPSS
Exploits1References2
CVE
CVE
added 2022/08/31 10:55 p.m.58 views

CVE-2022-36619

CVE-2022-36619 affects D-Link DIR-816 DIR-816 firmware A2_v1.10CNB04.img. The vulnerability, rooted in the /goform/setMAC endpoint, allows an unauthenticated reset of the device over the network. Reported impact aligns with high severity (CVSS 3.1: Network, no user interaction, availability impac...

7.5CVSS7.7AI score0.01022EPSS
Exploits1References2Affected Software1
CNNVD
CNNVD
added 2022/08/31 12:0 a.m.4 views

D-Link DIR-816 访问控制错误漏洞

The D-Link DIR-816 is a wireless router from China-based AUO D-Link. A security vulnerability exists in the D-Link DIR-816 firmware A2v1.10CNB04.img image, which stems from its /goform/setMAC component that allows an attacker to reset the network without authentication...

7.5CVSS6.8AI score0.01022EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2022/08/31 12:0 a.m.5 views

PT-2022-23511 · D Link · D-Link Dir-816

Name of the Vulnerable Software and Affected Versions: D-link DIR-816 version 1.10CNB04 Description: The issue allows the network to be reset without authentication via the "/goform/setMAC" API endpoint. This affects the ability to secure the network, as unauthorized access can lead to network...

7.5CVSS7.7AI score0.01022EPSS
Exploits1References6
Rows per page
Query Builder