CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

407 matches found

CNNVD•added 2025/12/29 12:0 a.m.•3 views

D-Link DWR-M920 安全漏洞

The D-Link DWR-M920 is a 4GLTE wireless router manufactured by Youxun D-Link. The D-Link DWR-M920 suffers from a buffer overflow vulnerability that stems from the incorrect manipulation of the parameter submit-url in the function sub464794 in the file /boafrm/formDefRoute, for which no detailed...

9CVSS7.5AI score0.00693EPSS

Exploits1References7

Positive Technologies•added 2025/12/28 12:0 a.m.•3 views

PT-2025-53653

Name of the Vulnerable Software and Affected Versions D-Link DWR-M920 versions up to 1.1.50 Description A flaw exists in D-Link DWR-M920 that could be exploited remotely. The issue resides in the sub 423848 function within the /boafrm/formParentControl file. Manipulation of the submit-url argumen...

9CVSS6.8AI score0.00693EPSS

Exploits1References10

RedhatCVE•added 2025/11/24 2:25 p.m.•10 views

CVE-2025-13552

A security flaw has been discovered in D-Link DIR-822K and DWR-M920 1.0020250513164613/1.1.50. The impacted element is an unknown function of the file /boafrm/formWlEncrypt. The manipulation of the argument submit-url results in buffer overflow. The attack may be performed from remote. The exploi...

9CVSS6.9AI score0.00666EPSS

Exploits1References1

RedhatCVE•added 2025/11/24 1:27 p.m.•3 views

CVE-2025-13550

A vulnerability was determined in D-Link DIR-822K and DWR-M920 1.0020250513164613/1.1.50. Impacted is an unknown function of the file /boafrm/formVpnConfigSetup. Executing manipulation of the argument submit-url can lead to buffer overflow. The attack can be executed remotely. The exploit has bee...

9CVSS7.1AI score0.00666EPSS

Exploits1References1

RedhatCVE•added 2025/11/24 1:27 p.m.•5 views

CVE-2025-13551

A vulnerability was identified in D-Link DIR-822K and DWR-M920 1.0020250513164613/1.1.50. The affected element is an unknown function of the file /boafrm/formWanConfigSetup. The manipulation of the argument submit-url leads to buffer overflow. The attack is possible to be carried out remotely. Th...

9CVSS7AI score0.00666EPSS

Exploits1References1

RedhatCVE•added 2025/11/24 12:24 p.m.•4 views

CVE-2025-13549

A vulnerability was found in D-Link DIR-822K 1.00. This issue affects the function sub455524 of the file /boafrm/formNtp. Performing manipulation of the argument submit-url results in buffer overflow. Remote exploitation of the attack is possible. The exploit has been made public and could be use...

9CVSS6.8AI score0.00643EPSS

Exploits1References1

RedhatCVE•added 2025/11/24 11:33 a.m.•4 views

CVE-2025-13548

A vulnerability has been found in D-Link DIR-822K and DWR-M920 1.0020250513164613/1.1.50. This vulnerability affects unknown code of the file /boafrm/formFirewallAdv. Such manipulation of the argument submit-url leads to buffer overflow. The attack may be launched remotely. The exploit has been...

9CVSS7.1AI score0.00697EPSS

Exploits1References1

RedhatCVE•added 2025/11/24 11:33 a.m.•4 views

CVE-2025-13547

A flaw has been found in D-Link DIR-822K and DWR-M920 1.0020250513164613/1.1.50. This affects an unknown part of the file /boafrm/formDdns. This manipulation of the argument submit-url causes memory corruption. The attack may be initiated remotely. The exploit has been published and may be used...

9CVSS6.6AI score0.0065EPSS

Exploits1References1

CNVD•added 2025/11/24 12:0 a.m.•3 views

D-Link DWR-M920 sub_41C7FC function buffer overflow vulnerability

The D-Link DWR-M920 is a 4GLTE wireless router manufactured by Youxun D-Link. The D-Link DWR-M920 suffers from a buffer overflow vulnerability that originates from malicious manipulation of the submit-url parameter of the sub41C7FC function in the /boafrm/formPinManageSetup file. An attacker can...

9CVSS6.5AI score0.0062EPSS

Exploits1References1

EUVD•added 2025/11/23 3:30 p.m.•6 views

EUVD-2025-198570

9CVSS8.8AI score0.00666EPSS

Exploits1References8

EUVD•added 2025/11/23 3:30 p.m.•5 views

EUVD-2025-198572

9CVSS6.4AI score0.00666EPSS

Exploits1References8

EUVD•added 2025/11/23 3:30 p.m.•4 views

EUVD-2025-198571

A weakness has been identified in D-Link DWR-M920 1.1.50. This affects the function sub41C7FC of the file /boafrm/formPinManageSetup. This manipulation of the argument submit-url causes buffer overflow. It is possible to initiate the attack remotely. The exploit has been made available to the...

9CVSS6.7AI score0.0062EPSS

Exploits1References6

OSV•added 2025/11/23 2:15 p.m.•1 views

CVE-2025-13552

8.7CVSS6.2AI score

Exploits0References7

CVE•added 2025/11/23 1:32 p.m.•10 views

CVE-2025-13552

CVE-2025-13552 affects D-Link DIR-822K and DWR-M920 (versions 1.00_20250513164613 and 1.1.50). The flaw is a buffer overflow in an unknown function of the file /boafrm/formWlEncrypt caused by manipulation of the submit-url argument; the attack can be performed remotely. Public exploit exists. Con...

9CVSS8.6AI score0.00666EPSS

Exploits1References7Affected Software1

OSV•added 2025/11/23 1:15 p.m.•1 views

CVE-2025-13551

8.7CVSS6.3AI score

Exploits0References7