CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Positive Technologies•added 2022/09/06 12:0 a.m.•2 views

PT-2022-6600 · D Link · D-Link Dap-2020 +1

8.8CVSS9.1AI score0.00072EPSS

Exploits0References6

Zero Day Initiative•added 2021/12/22 12:0 a.m.•33 views

D-Link DAP-2020 webproc var:page Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2020 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of the var:page parameter provided to the webproc endpoin...

8.8CVSS4.5AI score0.01127EPSS

NVD•added 2021/10/25 5:15 p.m.•10 views

CVE-2021-34862

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2020 1.01rc001 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of the var:menu parameter provided to the webpr...

8.8CVSS0.01524EPSS

OSV•added 2021/10/25 5:15 p.m.•0 views

CVE-2021-34863

8.8CVSS6.2AI score

OSV•added 2021/10/25 5:15 p.m.•1 views

CVE-2021-34860

This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of D-Link DAP-2020 1.01rc001 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of the getpage parameter provided to th...

6.5CVSS5.7AI score0.1322EPSS

Prion•added 2021/10/25 5:15 p.m.•7 views

Stack overflow

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2020 1.01rc001 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the webproc endpoint, which listens on TCP port 80 by defaul...

5.8CVSS8.8AI score0.01524EPSS

Exploits0References2Affected Software1

Prion•added 2021/10/25 5:15 p.m.•9 views

Stack overflow

5.8CVSS8.8AI score0.01127EPSS

Exploits0References2Affected Software1

Cvelist•added 2021/10/25 5:10 p.m.•18 views

CVE-2021-34863

8.8CVSS9AI score0.01127EPSS

CVE•added 2021/10/25 5:10 p.m.•45 views

CVE-2021-34861

This CVE affects D-Link DAP-2020 routers, specifically version 1.01rc001, where the webproc endpoint handling on TCP port 80 does improper length validation of user data, causing a stack-based overflow that can allow root-level code execution by network-adjacent attackers with no authentication. ...

8.8CVSS8.8AI score0.01524EPSS

Exploits0References2Affected Software1

CNVD•added 2021/08/19 12:0 a.m.•16 views

D-Link DAP-2020 Stack Buffer Overflow Vulnerability

The D-Link DAP-2020 is a wireless N access point. A stack buffer overflow vulnerability exists in the D-Link DAP-2020, which is caused by incorrect boundary checking of the var:page parameter in the webproc endpoint. An attacker could exploit the vulnerability to cause a buffer overflow and execu...

8.8CVSS4.4AI score0.01127EPSS

CNVD•added 2021/08/19 12:0 a.m.•12 views

D-Link DAP-2020 Stack Buffer Overflow Vulnerability (CNVD-2021-67522)

The D-Link DAP-2020 is a wireless N access point. A stack buffer overflow vulnerability exists in the D-Link DAP-2020, which is caused by a failure to properly boundary check in the webproc endpoint. An attacker could exploit the vulnerability to cause a buffer overflow and execute arbitrary code...

8.8CVSS4.4AI score0.01524EPSS

CNVD•added 2021/08/19 12:0 a.m.•18 views

D-Link DAP-2020 Stack Buffer Overflow Vulnerability (CNVD-2021-67523)

The D-Link DAP-2020 is a wireless N access point. The D-Link DAP-2020 is vulnerable to a stack buffer overflow vulnerability caused by incorrect boundary checking of the var:menu parameter in the webproc endpoint, which could be exploited by an attacker to cause a buffer overflow and execute...

8.8CVSS4.5AI score0.01524EPSS

CNNVD•added 2021/08/18 12:0 a.m.•1 views

D-Link DAP-2020 安全漏洞

8.8CVSS6.7AI score0.01524EPSS

Exploits0References4

CNNVD•added 2021/08/18 12:0 a.m.•1 views

D-Link DAP-2020 安全漏洞

8.8CVSS6.7AI score0.01524EPSS

Exploits0References4

CNNVD•added 2021/08/18 12:0 a.m.•1 views

D-Link DAP-2020 安全漏洞

8.8CVSS6.7AI score0.01127EPSS

Exploits0References5

Positive Technologies•added 2021/08/18 12:0 a.m.•4 views

PT-2021-20708 · D Link · D-Link Dap-2020

Name of the Vulnerable Software and Affected Versions: D-Link DAP-2020 version 1.01rc001 Description: This issue allows network-adjacent attackers to disclose sensitive information on affected installations. Authentication is not required to exploit this issue. The specific flaw exists within the...

6.5CVSS6.2AI score0.1322EPSS

Positive Technologies•added 2020/03/12 12:0 a.m.•1 views

PT-2020-6515 · D Link · D-Link Dap-2020

Name of the Vulnerable Software and Affected Versions: D-Link DAP-2020 version 1.01rc001 Description: This issue allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2020 routers. Authentication is not required to exploit this issue. The specific fla...

8.8CVSS8.8AI score0.01524EPSS

Exploits0References6

Positive Technologies•added 2020/03/12 12:0 a.m.•1 views

PT-2020-6512 · D Link · D-Link Dap-2020

Name of the Vulnerable Software and Affected Versions: D-Link DAP-2020 version 1.01rc001 Description: The issue is related to a stack-based buffer overflow when handling the var:menu parameter provided to the "webproc" endpoint. This occurs due to the lack of proper validation of the length of...

8.8CVSS8.9AI score0.01524EPSS

Positive Technologies•added 2020/03/12 12:0 a.m.•1 views

PT-2020-6504 · D Link · D-Link Dap-2020

Name of the Vulnerable Software and Affected Versions: D-Link DAP-2020 version 1.01rc001 Description: The issue is related to a stack-based buffer overflow when handling the var:page parameter provided to the "webproc" endpoint. This occurs due to the lack of proper validation of the length of...

8.8CVSS8.8AI score0.01127EPSS