CVE-2023-44423

D-Link DIR-X3260 SetTriggerPPPoEValidate Password Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-X3260 routers. Although authentication is required to exploit this...

CVE-2023-41227

D-Link DIR-3040 prog.cgi SetTriggerPPPoEValidate Stack-Based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-3040 routers. Authentication is required to exploit this...

CVE-2023-51622 D-Link DIR-X3260 prog.cgi SetTriggerPPPoEValidate Stack-based Buffer Overflow Remote Code Execution Vulnerability

D-Link DIR-X3260 prog.cgi SetTriggerPPPoEValidate Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-X3260 routers. Authentication is required to exploit this...

CVE-2023-34276

D-Link DIR-2150 SetTriggerPPPoEValidate Username Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-2150 routers. Although authentication is required to exploit this...

CVE-2023-44421

D-Link DIR-X3260 routers are affected by CVE-2023-44421. The vulnerability resides in the prog.cgi handler for HNAP requests served by lighttpd on port 80/443. It arises from insufficient validation of a user-supplied string before it is used in a system call, enabling an attacker to execute code...

CVE-2023-44421 D-Link DIR-X3260 SetTriggerPPPoEValidate Username Command Injection Remote Code Execution Vulnerability

D-Link DIR-X3260 SetTriggerPPPoEValidate Username Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-X3260 routers. Although authentication is required to exploit this...

CVE-2023-34276 D-Link DIR-2150 SetTriggerPPPoEValidate Username Command Injection Remote Code Execution Vulnerability

D-Link DIR-2150 SetTriggerPPPoEValidate Username Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-2150 routers. Although authentication is required to exploit this...

D-Link DIR-3040 安全漏洞

The D-Link DIR-3040 is a router from China-based AUO D-Link. It provides the function of connecting to a network. A security vulnerability exists in the D-Link DIR-3040 that stems from a prog.cgi SetTriggerPPPoEValidate stack-based buffer overflow remote code execution vulnerability...

D-Link DIR-X3260 安全漏洞

The D-Link DIR-X3260 is a mainstream router from D-Link that supports Wi-Fi 6. The D-Link DIR-X3260 suffers from a command injection vulnerability that stems from the SetTriggerPPPoEValidate username command injection remote code execution vulnerability. An attacker can exploit this vulnerability...

D-Link DIR-X3260 安全漏洞

D-Link DIR-X3260 is a Wi-Fi 6 router from China-based D-Link. A security vulnerability exists in the D-Link DIR-X3260 that stems from a SetTriggerPPPoEValidate password command injection remote code execution vulnerability...

D-Link DIR-X3260 安全漏洞

D-Link DIR-X3260 is a Wi-Fi 6 router from China-based AUO D-Link. A security vulnerability exists in the D-Link DIR-X3260 that stems from a prog.cgi SetTriggerPPPoEValidate stack-based buffer overflow remote code execution vulnerability...

The vulnerability of the SetTriggerPPPoEValidate() function in the D-Link DIR-3040 wireless router’s microprogramming software allows a hacker to execute arbitrary code.

The vulnerability of the SetTriggerPPPoEValidate function in the D-Link DIR-3040 wireless router software lies in the fact that the operation’s output escapes the buffer in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by sending specially crafted HNAP...

The vulnerability of the SetTriggerPPPoEValidate() function in D-Link DIR-X3260 Wi-Fi routers’ software allows a hacker to bypass security restrictions and execute arbitrary code.

The vulnerability of the SetTriggerPPPoEValidate function in D-Link DIR-X3260 Wi-Fi routers is related to insufficient cleaning of input data. Exploiting this vulnerability can allow a malicious actor to bypass security restrictions and execute arbitrary code by sending specially crafted HNAP...

PT-2023-6105 · D Link · D-Link Dir-X3260

Name of the Vulnerable Software and Affected Versions: D-Link DIR-X3260 affected versions not specified Description: This issue allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-X3260 routers. Although authentication is required to exploit this...

The vulnerability of the SetTriggerPPPoEValidate function in the application software interface of D-Link DIR-2150 router microprogramming system allows a hacker to execute arbitrary code.

The vulnerability of the SetTriggerPPPoEValidate function in the application software interface of D-Link DIR-2150 router microprogramming devices is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using specially...