120 matches found
EUVD-2026-16551
Missing authentication for critical function vulnerability in BUFFALO Wi-Fi router products may allow an attacker to forcibly reboot the product without authentication...
CVE-2019-16288
On Tenda N301 wireless routers, a long string in the wifiSSID parameter of a goform/setWifi POST request causes the device to crash...
EUVD-2025-19052
Malicious code in bioql PyPI...
EUVD-2023-30593
Malicious code in bioql PyPI...
EUVD-2023-31532
Malicious code in bioql PyPI...
CVE-2025-6559
Multiple wireless router models from Sapido have an OS Command Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary OS commands and execute them on the server. The affected models are out of support; replacing the device is recommended...
CVE-2025-6559
Multiple wireless router models from Sapido have an OS Command Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary OS commands and execute them on the server. The affected models are out of support; replacing the device is recommended...
CVE-2023-26800
Ruijie Networks RG-EW1200 Wireless Routers EW3.01B11P204 was discovered to contain a command injetion vulnerability via the params.path parameter in the upgradeConfirm function...
[SECURITY] Fedora 42 Update: dropbear-2025.88-1.fc42
Dropbear is a relatively small SSH server and client. It's particularly useful for "embedded"-type Linux or other Unix systems, such as wireless routers...
CVE-2024-45696
Certain models of D-Link wireless routers contain hidden functionality. By sending specific packets to the web service, the attacker can forcibly enable the telnet service and log in using hard-coded credentials. The telnet service enabled through this method can only be accessed from within the...
CVE-2024-45694
The web service of certain models of D-Link wireless routers contains a Stack-based Buffer Overflow vulnerability, which allows unauthenticated remote attackers to exploit this vulnerability to execute arbitrary code on the device...
CVE-2024-45696 D-Link WiFi router - Hidden Functionality
Certain models of D-Link wireless routers contain hidden functionality. By sending specific packets to the web service, the attacker can forcibly enable the telnet service and log in using hard-coded credentials. The telnet service enabled through this method can only be accessed from within the...
CVE-2024-45695
CVE-2024-45695 affects D-Link DIR-X4860 wireless routers. The web service exposes a stack-based buffer overflow in unauthenticated context, enabling remote code execution. Public sources confirm the DIR-X4860 as affected and describe the root cause as a stack-based overflow in the device’s web se...
CVE-2024-45694
CVE-2024-45694 affects certain D-Link wireless routers (e.g., DIR-X4860, DIR-X5460, COVR-X1870) via a stack-based buffer overflow in the device web service that allows unauthenticated remote code execution. The vulnerability is triggered by malformed input to the web service, enabling an attacker...
PT-2024-6871 · D Link · D-Link Wireless Routers
Name of the Vulnerable Software and Affected Versions: D-Link wireless routers affected versions not specified Description: The web service of certain models of D-Link wireless routers contains a Stack-based Buffer Overflow issue, which allows unauthenticated remote attackers to exploit this issu...
PT-2024-30936 · Buffalo · Buffalo Wireless Lan Repeaters +1
Name of the Vulnerable Software and Affected Versions: BUFFALO wireless LAN routers and wireless LAN repeaters affected versions not specified Description: An OS command injection issue exists, allowing an arbitrary OS command to be executed if a specially crafted request is sent to the product's...
BUFFALO wireless LAN routers and wireless LAN repeaters vulnerable to OS command injection
Overview Wireless LAN routers and wireless LAN repeaters provided by BUFFALO INC. contain an OS command injection vulnerability CWE-78. Yoshiki Mori and Masaki Kubo of National Institute of Information and Communications Technology, Cybersecurity Research Laboratory reported this vulnerability to...
PT-2024-28550 · Elecom · Elecom Wireless Lan Routers
Name of the Vulnerable Software and Affected Versions: ELECOM wireless LAN routers affected versions not specified Description: A specially crafted request may be sent to the affected product by a logged-in user with administrative privilege to execute an arbitrary OS command. This issue exists i...
PT-2024-25648 · Elecom · Elecom Wireless Lan Routers
Name of the Vulnerable Software and Affected Versions: ELECOM wireless LAN routers affected versions not specified Description: The issue allows for the unrestricted upload of files with dangerous types in ELECOM wireless LAN routers. A specially crafted file can be uploaded by a logged-in user...
15 vulnerabilities discovered in software development kit for wireless routers
Cisco Talos Vulnerability Research team recently discovered 15 vulnerabilities in the Realtek rtl819x Jungle software development kit used in some small and home office wireless routers. This SDK uses the discontinued, open-source Boa as its web server. Talos researchers discovered these...