Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

139 matches found

NVD
NVDadded 2024/05/03 2:15 a.m.13 views

CVE-2023-32138

D-Link DAP-1360 webproc Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1360 routers. Authentication is not required to exploit this vulnerability. The specific...

8.8CVSS7.9AI score0.00931EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2024/05/03 2:15 a.m.2 views

CVE-2023-32139

D-Link DAP-1360 webproc Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1360 routers. Authentication is not required to exploit this vulnerability. The specific...

8.8CVSS6.3AI score0.01038EPSS
Exploits0References3
OSV
OSVadded 2024/05/03 2:15 a.m.3 views

CVE-2023-32137

D-Link DAP-1360 webproc WEBDisplayPage Directory Traversal Information Disclosure Vulnerability. This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of D-Link DAP-1360 routers. Authentication is not required to exploit this vulnerabilit...

6.5CVSS7.2AI score0.01167EPSS
Exploits0References2
OSV
OSVadded 2024/05/03 2:15 a.m.5 views

CVE-2023-32140

D-Link DAP-1360 webproc var:sysToken Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1360 routers. Authentication is not required to exploit this vulnerability. T...

7.5CVSS6.3AI score0.00913EPSS
Exploits0References2
NVD
NVDadded 2024/05/03 2:15 a.m.13 views

CVE-2023-32142

D-Link DAP-1360 webproc var:page Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1360 routers. Authentication is not required to exploit this vulnerability. The...

8.8CVSS9.1AI score0.01101EPSS
Exploits0References2
OSV
OSVadded 2024/05/03 2:15 a.m.5 views

CVE-2023-32142

D-Link DAP-1360 webproc var:page Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1360 routers. Authentication is not required to exploit this vulnerability. The...

8.8CVSS7.8AI score0.01101EPSS
Exploits0References2
OSV
OSVadded 2024/05/03 2:15 a.m.5 views

CVE-2023-32136

D-Link DAP-1360 webproc var:menu Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1360 routers. Authentication is not required to exploit this vulnerability. The...

8.8CVSS6.3AI score0.01155EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2024/05/03 2:15 a.m.2 views

CVE-2023-32136

D-Link DAP-1360 webproc var:menu Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1360 routers. Authentication is not required to exploit this vulnerability. The...

8.8CVSS6.3AI score0.01155EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2024/05/03 1:56 a.m.25 views

CVE-2023-32146 D-Link DAP-1360 Multiple Parameters Stack-Based Buffer Overflow Remote Code Execution Vulnerability

D-Link DAP-1360 Multiple Parameters Stack-Based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1360 routers. Authentication is not required to exploit this vulnerability. T...

8.8CVSS9.1AI score0.01101EPSS
Exploits0References2
CVE
CVEadded 2024/05/03 1:56 a.m.74 views

CVE-2023-32146

CVE-2023-32146 affects D-Link DAP-1360 devices. Root cause: a stack-based buffer overflow in /cgi-bin/webproc when parsing the errorpage and nextpage parameters, copying data into a fixed-length buffer. This allows remote, network-adjacent attackers (no authentication) to execute code with root p...

8.8CVSS9.1AI score0.01101EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2024/05/03 1:56 a.m.24 views

CVE-2023-32144 D-Link DAP-1360 webproc COMM_MakeCustomMsg Stack-based Buffer Overflow Remote Code Execution Vulnerability

D-Link DAP-1360 webproc COMMMakeCustomMsg Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1360 routers. Authentication is not required to exploit this...

8.8CVSS9.2AI score0.01038EPSS
Exploits0References2
Cvelist
Cvelistadded 2024/05/03 1:56 a.m.18 views

CVE-2023-32142 D-Link DAP-1360 webproc var:page Stack-based Buffer Overflow Remote Code Execution Vulnerability

D-Link DAP-1360 webproc var:page Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1360 routers. Authentication is not required to exploit this vulnerability. The...

8.8CVSS9.2AI score0.01101EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2024/05/03 1:56 a.m.18 views

CVE-2023-32142 D-Link DAP-1360 webproc var:page Stack-based Buffer Overflow Remote Code Execution Vulnerability

D-Link DAP-1360 webproc var:page Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1360 routers. Authentication is not required to exploit this vulnerability. The...

8.8CVSS9.1AI score0.01101EPSS
Exploits0References2
CVE
CVEadded 2024/05/03 1:56 a.m.69 views

CVE-2023-32141

The CVE-2023-32141 issue affects D-Link DAP-1360 devices, where an unvalidated length when handling /cgi-bin/webproc requests (getpage/errorpage) causes a stack-based buffer overflow. This leads to remote code execution with root privileges by a network-adjacent attacker, without authentication. ...

8.8CVSS9.1AI score0.01101EPSS
Exploits0References2Affected Software1
CVE
CVEadded 2024/05/03 1:56 a.m.71 views

CVE-2023-32140

CVE-2023-32140 affects D-Link DAP-1360 via a heap-based buffer overflow in the webproc endpoint (/cgi-bin/webproc) when parsing var:sys_Token. The flaw allows network-adjacent attackers (no authentication) to execute code with root privileges. Impact is remote code execution with full device comp...

7.5CVSS8.2AI score0.00913EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichmentadded 2024/05/03 1:56 a.m.16 views

CVE-2023-32139 D-Link DAP-1360 webproc Stack-based Buffer Overflow Remote Code Execution Vulnerability

D-Link DAP-1360 webproc Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1360 routers. Authentication is not required to exploit this vulnerability. The specific...

8.8CVSS9.1AI score0.01038EPSS
Exploits0References2
CVE
CVEadded 2024/05/03 1:56 a.m.67 views

CVE-2023-32139

CVE-2023-32139 affects D-Link DAP-1360 devices (also reported for DAP-2020) via a stack-based buffer overflow in the /cgi-bin/webproc endpoint. The flaw arises from insufficient validation of user-supplied data before copying it into a fixed-length stack buffer, enabling network-adjacent attacker...

8.8CVSS9.1AI score0.01038EPSS
Exploits0References2Affected Software1
CVE
CVEadded 2024/05/03 1:56 a.m.74 views

CVE-2023-32138

CVE-2023-32138 affects D-Link DAP-1360 (and related DAP-2020 devices per sources). The vulnerability is a heap-based buffer overflow in the webproc handler for the "/cgi-bin/webproc" endpoint, caused by improper validation of the length of user-supplied data copied into a fixed‑length heap buffer...

8.8CVSS8.2AI score0.00931EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2024/05/03 1:56 a.m.20 views

CVE-2023-32138 D-Link DAP-1360 webproc Heap-based Buffer Overflow Remote Code Execution Vulnerability

D-Link DAP-1360 webproc Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1360 routers. Authentication is not required to exploit this vulnerability. The specific...

7.5CVSS8.2AI score0.00931EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2024/05/03 1:56 a.m.20 views

CVE-2023-32138 D-Link DAP-1360 webproc Heap-based Buffer Overflow Remote Code Execution Vulnerability

D-Link DAP-1360 webproc Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1360 routers. Authentication is not required to exploit this vulnerability. The specific...

7.5CVSS8.2AI score0.00931EPSS
Exploits0References2
Rows per page
Query Builder