CVE-2025-60672

An unauthenticated command injection vulnerability exists in the D-Link DIR-878A1 router firmware FW101B04.bin. The vulnerability occurs in the 'SetDynamicDNSSettings' functionality, where the 'ServerAddress' and 'Hostname' parameters in prog.cgi are stored in NVRAM and later used by rc to...

PT-2025-46885

An unauthenticated command injection vulnerability exists in the D-Link DIR-878A1 router firmware FW101B04.bin. The vulnerability occurs in the 'SetDynamicDNSSettings' functionality, where the 'ServerAddress' and 'Hostname' parameters in prog.cgi are stored in NVRAM and later used by rc to...

CVE-2025-60672

An unauthenticated command injection vulnerability exists in the D-Link DIR-878A1 router firmware FW101B04.bin. The vulnerability occurs in the 'SetDynamicDNSSettings' functionality, where the 'ServerAddress' and 'Hostname' parameters in prog.cgi are stored in NVRAM and later used by rc to...

EUVD-2025-4133

Malicious code in bioql PyPI...

EUVD-2022-49367

Malicious code in bioql PyPI...

CVE-2022-46563

D-Link DIR-882 DIR882A1FW130B06, DIR-878 DIR878FW1.30B08 was discovered to contain a stack overflow via the Password parameter in the SetDynamicDNSSettings module...

D-Link DIR-853 SetDynamicDNSSettings Module Buffer Overflow Vulnerability

The D-Link DIR-853 is a router from China-based AUO D-Link. The D-Link DIR-853 suffers from a buffer overflow vulnerability that stems from the Password parameter in the SetDynamicDNSSettings module not properly handling user input. No details of the vulnerability are provided at this time...

CVE-2025-25744

D-Link DIR-853 A1 FW1.20B07 was discovered to contain a stack-based buffer overflow vulnerability via the Password parameter in the SetDynamicDNSSettings module...

CVE-2023-51613 D-Link DIR-X3260 prog.cgi SetDynamicDNSSettings Stack-Based Buffer Overflow Remote Code Execution Vulnerability

D-Link DIR-X3260 prog.cgi SetDynamicDNSSettings Stack-Based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-X3260 routers. Authentication is required to exploit this...

CVE-2023-51613 D-Link DIR-X3260 prog.cgi SetDynamicDNSSettings Stack-Based Buffer Overflow Remote Code Execution Vulnerability

D-Link DIR-X3260 prog.cgi SetDynamicDNSSettings Stack-Based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-X3260 routers. Authentication is required to exploit this...

CVE-2023-51613

CVE-2023-51613 affects the D-Link DIR-X3260 router, specifically the prog.cgi SetDynamicDNSSettings handler. The root cause is a stack-based buffer overflow in the HNAP path processed by lighttpd on ports 80/443 due to insufficient input validation of a user-supplied string. This allows network-a...

CVE-2023-41216 D-Link DIR-3040 prog.cgi SetDynamicDNSSettings Stack-Based Buffer Overflow Remote Code Execution Vulnerability

D-Link DIR-3040 prog.cgi SetDynamicDNSSettings Stack-Based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-3040 routers. Authentication is required to exploit this...

D-Link DIR-X3260 安全漏洞

The D-Link DIR-X3260 is a mainstream router with Wi-Fi 6 support from D-Link, model DIR-X3260 AX3200. The D-Link DIR-X3260 suffers from a buffer overflow vulnerability, which stems from a stack-based buffer overflow remote code execution vulnerability in prog.cgi SetDynamicDNSSettings, which can ...

D-Link DIR-X3260 prog.cgi SetDynamicDNSSettings Stack-Based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-X3260 routers. Authentication is required to exploit this vulnerability. The specific flaw exists within the prog.cgi binary, which handles HNAP requests made to the lighttpd...

CVE-2022-46563

D-Link DIR-882 DIR882A1FW130B06, DIR-878 DIR878FW1.30B08 was discovered to contain a stack overflow via the Password parameter in the SetDynamicDNSSettings module...

CVE-2022-46563

D-Link DIR-882 DIR882A1FW130B06, DIR-878 DIR878FW1.30B08 was discovered to contain a stack overflow via the Password parameter in the SetDynamicDNSSettings module...

Stack overflow

D-Link DIR-882 DIR882A1FW130B06, DIR-878 DIR878FW1.30B08 was discovered to contain a stack overflow via the Password parameter in the SetDynamicDNSSettings module...

CVE-2022-46563

CVE-2022-46563 relates to a stack overflow in the SetDynamicDNSSettings module of D-Link DIR-882 and DIR-878 firmwares. Affected: DIR-882 (DIR882A1_FW130B06) and DIR-878 (DIR_878_FW1.30B08). Root cause: buffer/stack overflow via the Password parameter. Impact per CVSS: Confidentiality, Integrity,...

PT-2022-7102 · D Link · D-Link Dir-878 +1

Name of the Vulnerable Software and Affected Versions: D-Link DIR-882 versions DIR882A1 FW130B06 D-Link DIR-878 versions DIR 878 FW1.30B08 Description: The issue is related to a buffer overflow in the SetDynamicDNSSettings module of the D-Link DIR-882 and DIR-878 wireless router firmware. This ca...

CVE-2022-46563

D-Link DIR-882 DIR882A1FW130B06, DIR-878 DIR878FW1.30B08 was discovered to contain a stack overflow via the Password parameter in the SetDynamicDNSSettings module...