Lucene search
K

42 matches found

Vulnrichment
Vulnrichment
added 2024/05/03 2:12 a.m.22 views

CVE-2023-41223 D-Link DIR-3040 prog.cgi SetQuickVPNSettings PSK Stack-Based Buffer Overflow Remote Code Execution Vulnerability

D-Link DIR-3040 prog.cgi SetQuickVPNSettings PSK Stack-Based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-3040 routers. Authentication is required to exploit this...

6.8CVSS7.8AI score0.00705EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/05/03 2:12 a.m.35 views

CVE-2023-41217 D-Link DIR-3040 prog.cgi SetQuickVPNSettings Password Stack-Based Buffer Overflow Remote Code Execution Vulnerability

D-Link DIR-3040 prog.cgi SetQuickVPNSettings Password Stack-Based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-3040 routers. Authentication is required to exploit this...

7.1CVSS7.6AI score0.00584EPSS
Exploits0References2
CVE
CVE
added 2024/05/03 2:12 a.m.72 views

CVE-2023-41217

CVE-2023-41217 affects D-Link DIR-3040 routers. The vulnerability resides in the prog.cgi handling of HNAP requests to the lighttpd webserver on ports 80/443, where unsafely copied user input into a fixed-length stack buffer leads to a stack-based buffer overflow . This permits remote code execut...

7.1CVSS7.5AI score0.00584EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2024/05/03 12:0 a.m.6 views

D-Link DIR-3040 安全漏洞

The D-Link DIR-3040 is a router from China-based AUO D-Link. It provides the function of connecting to a network. A security vulnerability exists in the D-Link DIR-3040 that stems from a stack-based buffer overflow remote code execution vulnerability in the prog.cgi SetQuickVPNSettings password...

7.1CVSS7.6AI score0.00584EPSS
Exploits0References3
Zero Day Initiative
Zero Day Initiative
added 2024/01/11 12:0 a.m.28 views

D-Link DIR-X3260 prog.cgi SetQuickVPNSettings PSK Stack-Based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-X3260 routers. Authentication is required to exploit this vulnerability. The specific flaw exists within the prog.cgi binary, which handles HNAP requests made to the lighttpd...

6.8CVSS7.5AI score0.01126EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2023/11/10 12:0 a.m.7 views

The vulnerability of the SetQuickVPNSettings module in D-Link wireless router software, such as DIR-882 and DIR-878, allows a hacker to execute arbitrary code.

The vulnerability of the SetQuickVPNSettings module in D-Link’s wireless router products, such as DIR-882 and DIR-878, is related to a stack overflow caused by a password parameter. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely...

8.3CVSS7.7AI score0.01414EPSS
Exploits0References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2023/11/10 12:0 a.m.10 views

The vulnerability of the SetQuickVPNSettings module in D-Link wireless router software, such as DIR-882 and DIR-878, allows a hacker to execute arbitrary code.

The vulnerability of the SetQuickVPNSettings module in D-Link’s wireless router products, such as DIR-882 and DIR-878, is related to buffer overflow attacks. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely...

8.3CVSS8AI score0.01414EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/10/10 12:0 a.m.6 views

The vulnerability of the SetQuickVPNSettings() function in the microprogramming software for D-Link DIR-3040 routers allows a hacker to execute arbitrary code.

The vulnerability of the SetQuickVPNSettings function in the D-Link DIR-3040 wireless router’s microprogramming software is related to the operation of writing data outside of the buffer in memory when processing the PSK parameter. Exploiting this vulnerability allows a malicious actor to execute...

7.7CVSS7.3AI score0.00705EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2023/09/13 12:0 a.m.6 views

The vulnerability of the SetQuickVPNSettings() function in the microprogramming software for D-Link DIR-3040 routers allows a hacker to execute arbitrary code.

The vulnerability of the SetQuickVPNSettings function in the D-Link DIR-3040 wireless router’s microprogramming software is related to the execution of an operation that goes beyond the buffer in memory as a result of executing the prog.cgi script. Exploiting this vulnerability allows a remote...

7.1CVSS8AI score0.00584EPSS
Exploits0References4Affected Software1
Zero Day Initiative
Zero Day Initiative
added 2023/09/07 12:0 a.m.30 views

D-Link DIR-3040 prog.cgi SetQuickVPNSettings Password Stack-Based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-3040 routers. Authentication is required to exploit this vulnerability. The specific flaw exists within the prog.cgi binary, which handles HNAP requests made to the lighttpd...

7.1CVSS7.3AI score0.00584EPSS
Exploits0References1
CNVD
CNVD
added 2022/12/27 12:0 a.m.22 views

D-Link DIR-882 Buffer Overflow Vulnerability

D-Link DIR-882 is a wireless router from China Youxun D-Link.D-Link DIR-882 DIR882A1FW130B06 has a security vulnerability that stems from a PSK parameter found through the SetQuickVPNSettings module that contains a stack overflow. No detailed vulnerability details are currently available...

7.2CVSS3.2AI score0.01414EPSS
Exploits0References1
NVD
NVD
added 2022/12/23 7:15 p.m.20 views

CVE-2022-46562

D-Link DIR-882 DIR882A1FW130B06, DIR-878 DIR878FW1.30B08 was discovered to contain a stack overflow via the PSK parameter in the SetQuickVPNSettings module...

7.2CVSS0.01414EPSS
Exploits0References3
NVD
NVD
added 2022/12/23 7:15 p.m.22 views

CVE-2022-46566

D-Link DIR-882 DIR882A1FW130B06, DIR-878 DIR878FW1.30B08 was discovered to contain a stack overflow via the Password parameter in the SetQuickVPNSettings module...

7.2CVSS0.01414EPSS
Exploits0References3
Prion
Prion
added 2022/12/23 7:15 p.m.29 views

Stack overflow

D-Link DIR-882 DIR882A1FW130B06, DIR-878 DIR878FW1.30B08 was discovered to contain a stack overflow via the PSK parameter in the SetQuickVPNSettings module...

5.8CVSS7.1AI score0.01414EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2022/12/23 7:15 p.m.20 views

Stack overflow

D-Link DIR-882 DIR882A1FW130B06, DIR-878 DIR878FW1.30B08 was discovered to contain a stack overflow via the Password parameter in the SetQuickVPNSettings module...

5.8CVSS7.1AI score0.01414EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2022/12/23 12:0 a.m.26 views

CVE-2022-46562

D-Link DIR-882 DIR882A1FW130B06, DIR-878 DIR878FW1.30B08 was discovered to contain a stack overflow via the PSK parameter in the SetQuickVPNSettings module...

8AI score0.01414EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/12/23 12:0 a.m.3 views

D-Link DIR-882 缓冲区错误漏洞

The D-Link DIR-882 is a wireless router from China-based AUO D-Link. The D-Link DIR-882 DIR882A1FW130B06 suffers from a buffer error vulnerability that stems from the discovery of a contained stack overflow via the Password parameter in the SetQuickVPNSettings module...

7.2CVSS7.7AI score0.01414EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2022/12/23 12:0 a.m.7 views

CVE-2022-46562

D-Link DIR-882 DIR882A1FW130B06, DIR-878 DIR878FW1.30B08 was discovered to contain a stack overflow via the PSK parameter in the SetQuickVPNSettings module...

8AI score0.01414EPSS
Exploits0References3
CVE
CVE
added 2022/12/23 12:0 a.m.55 views

CVE-2022-46562

CVE-2022-46562 affects D-Link DIR-882 and DIR-878 firmware (DIR882A1_FW130B06 and DIR_878_FW1.30B08). A stack overflow via the PSK parameter in the SetQuickVPNSettings module is described, with potential for remote code execution or crash if exploited. Public details in the sources are focused on...

7.2CVSS7.3AI score0.01414EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2022/12/23 12:0 a.m.53 views

CVE-2022-46566

CVE-2022-46566 affects D-Link DIR-882 (DIR882A1 FW130B06) and DIR-878 (DIR 878 FW1.30B08). The root cause is a stack overflow in the SetQuickVPNSettings module triggered via the Password parameter. Public references describe a remote condition with potential arbitrary code execution, aligned with...

7.2CVSS7.7AI score0.01414EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder