Lucene search
K

25 matches found

NVD
NVD
added 2026/02/08 8:15 a.m.8 views

CVE-2026-2142

A weakness has been identified in D-Link DIR-823X 250416. This vulnerability affects the function sub420688 of the file /goform/setqos. Executing a manipulation can lead to os command injection. The attack can be executed remotely. The exploit has been made available to the public and could be us...

8.6CVSS0.05687EPSS
Exploits1References5
CNNVD
CNNVD
added 2026/02/08 12:0 a.m.9 views

D-Link DIR-823X 操作系统命令注入漏洞

The D-Link DIR-823X is a wireless router produced by D-Link Corporation. The D-Link DIR-823X 250416 version has a vulnerability related to operating system command injection. This vulnerability stems from incorrect operations on the function sub420688 within the file/goform/setqos, which may lead...

8.6CVSS7.1AI score0.05687EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2026/01/09 9:1 a.m.4 views

CVE-2023-25093

Multiple buffer overflow vulnerabilities exist in the vtyshubus binary of Milesight UR32L v32.3.0.5 due to the use of an unsafe sprintf pattern. A specially crafted HTTP request can lead to arbitrary code execution. An attacker with high privileges can send HTTP requests to trigger these...

7.2CVSS8.1AI score0.0146EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:1 a.m.8 views

CVE-2023-25095

Multiple buffer overflow vulnerabilities exist in the vtyshubus binary of Milesight UR32L v32.3.0.5 due to the use of an unsafe sprintf pattern. A specially crafted HTTP request can lead to arbitrary code execution. An attacker with high privileges can send HTTP requests to trigger these...

7.2CVSS8AI score0.0146EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-29079

Malicious code in bioql PyPI...

7.2CVSS7AI score0.0146EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2025/03/05 12:0 a.m.5 views

The vulnerability of the set_qos() function in the internet.cgi script of the Wavlink AC3000 router microprogramming system allows a hacker to execute arbitrary commands.

The vulnerability of the setqos function in the internet.cgi script of the Wavlink AC3000 WL-WN533A8 router microprogramming system is related to the escape of operations from the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands by sending...

9.1CVSS6.2AI score0.00845EPSS
Exploits1References3Affected Software1
CNVD
CNVD
added 2025/01/17 12:0 a.m.7 views

WAVLINK AC3000 internet.cgi en_enable parameter buffer overflow vulnerability in set_qos function

WAVLINK AC3000 is a wireless router from China Ruiyin WAVLINK. A buffer overflow vulnerability exists in the WAVLINK AC3000 M33A8.V5030.210505, which is caused by the enenable parameter of the internet.cgi setqos function failing to correctly validate the length of the input data, and can be...

9.1CVSS8.3AI score0.01212EPSS
Exploits1References1
NVD
NVD
added 2025/01/14 3:15 p.m.6 views

CVE-2024-39768

Multiple buffer overflow vulnerabilities exist in the internet.cgi setqos functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to stack-based buffer overflow. An attacker can make an authenticated HTTP request to trigger these vulnerabilities.This...

9.1CVSS0.01212EPSS
Exploits1References2
CNNVD
CNNVD
added 2025/01/14 12:0 a.m.4 views

WAVLINK AC3000 安全漏洞

WAVLINK AC3000 is a wireless router from China Ruiyin WAVLINK. A buffer overflow vulnerability exists in the WAVLINK AC3000 M33A8.V5030.210505, which is caused by the enenable parameter of the internet.cgi setqos function failing to correctly validate the length of the input data, and can be...

9.1CVSS8.1AI score0.01212EPSS
Exploits1References2
BDU FSTEC
BDU FSTEC
added 2023/09/18 12:0 a.m.4 views

The vulnerability of the set_qos function in the Milesight UR32L router software allows a hacker to execute arbitrary code.

The vulnerability of the setqos function in the Milesight UR32L router microprogramming system arises due to a stack-based buffer overflow. Exploiting this vulnerability allows an attacker operating remotely to execute arbitrary code...

9CVSS7.9AI score0.0146EPSS
Exploits1References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/09/14 12:0 a.m.6 views

The vulnerability of the set_qos function in the Milesight UR32L router software allows a hacker to execute arbitrary code.

The vulnerability of the setqos function in the Milesight UR32L router microprogramming system arises due to a stack-based buffer overflow. Exploiting this vulnerability allows an attacker operating remotely to execute arbitrary code...

8.3CVSS7.9AI score0.0146EPSS
Exploits1References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/09/14 12:0 a.m.6 views

The vulnerability of the set_qos function in the Milesight UR32L router software allows a hacker to execute arbitrary code.

The vulnerability of the setqos function in the Milesight UR32L router microprogramming system arises due to a stack-based buffer overflow. Exploiting this vulnerability allows an attacker operating remotely to execute arbitrary code...

8.3CVSS7.9AI score0.0146EPSS
Exploits1References4Affected Software1
CNVD
CNVD
added 2023/07/10 12:0 a.m.18 views

Milesight UR32L set_qos function buffer overflow vulnerability (CNVD-2023-65098)

The Milesight UR32L is an industrial router from China-based Milesight. A buffer overflow vulnerability exists in the Milesight UR32L setqos function, which can be exploited by an attacker to cause a buffer overflow and execute arbitrary code on the system, or cause an application to crash...

5.8CVSS8.1AI score0.0146EPSS
Exploits1Affected Software1
CNVD
CNVD
added 2023/07/10 12:0 a.m.23 views

Milesight UR32L set_qos function buffer overflow vulnerability (CNVD-2023-65482)

The Milesight UR32L is a 4G industrial router from China's Milesight. A buffer overflow vulnerability exists in the Milesight UR32L setqos function, which can be exploited by an attacker to cause a buffer overflow and execute arbitrary code on the system, or cause an application to crash...

7.2CVSS8.1AI score0.0146EPSS
Exploits1References1
CNVD
CNVD
added 2023/07/10 12:0 a.m.21 views

Milesight UR32L set_qos function buffer overflow vulnerability (CNVD-2023-65125)

The Milesight UR32L is a 4G industrial router from China's Milesight. A buffer overflow vulnerability exists in the Milesight UR32L setqos function, which can be exploited by an attacker to cause a buffer overflow and execute arbitrary code on the system, or cause an application to crash...

5.8CVSS8.1AI score0.0146EPSS
Exploits1Affected Software1
NVD
NVD
added 2023/07/06 3:15 p.m.35 views

CVE-2023-25098

Multiple buffer overflow vulnerabilities exist in the vtyshubus binary of Milesight UR32L v32.3.0.5 due to the use of an unsafe sprintf pattern. A specially crafted HTTP request can lead to arbitrary code execution. An attacker with high privileges can send HTTP requests to trigger these...

7.2CVSS7.5AI score0.0146EPSS
Exploits1References2
NVD
NVD
added 2023/07/06 3:15 p.m.22 views

CVE-2023-25093

Multiple buffer overflow vulnerabilities exist in the vtyshubus binary of Milesight UR32L v32.3.0.5 due to the use of an unsafe sprintf pattern. A specially crafted HTTP request can lead to arbitrary code execution. An attacker with high privileges can send HTTP requests to trigger these...

7.2CVSS7.5AI score0.0146EPSS
Exploits1References2
NVD
NVD
added 2023/07/06 3:15 p.m.28 views

CVE-2023-25095

Multiple buffer overflow vulnerabilities exist in the vtyshubus binary of Milesight UR32L v32.3.0.5 due to the use of an unsafe sprintf pattern. A specially crafted HTTP request can lead to arbitrary code execution. An attacker with high privileges can send HTTP requests to trigger these...

7.2CVSS7.5AI score0.0146EPSS
Exploits1References2
Prion
Prion
added 2023/07/06 3:15 p.m.29 views

Buffer overflow

Multiple buffer overflow vulnerabilities exist in the vtyshubus binary of Milesight UR32L v32.3.0.5 due to the use of an unsafe sprintf pattern. A specially crafted HTTP request can lead to arbitrary code execution. An attacker with high privileges can send HTTP requests to trigger these...

5.8CVSS7.4AI score0.0146EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2023/07/06 3:15 p.m.24 views

Buffer overflow

Multiple buffer overflow vulnerabilities exist in the vtyshubus binary of Milesight UR32L v32.3.0.5 due to the use of an unsafe sprintf pattern. A specially crafted HTTP request can lead to arbitrary code execution. An attacker with high privileges can send HTTP requests to trigger these...

5.8CVSS7.4AI score0.0146EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder