CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 1CVE-2022-29324
https://notcve.org/view.php?id=CVE-2022-29324
D-Link DIR-816 A2_v1.10CNB04 was discovered to contain a stack overflow via the proto parameter in /goform/form2IPQoSTcAdd. Se ha detectado que D-Link DIR-816 versión A2_v1.10CNB04, contiene un desbordamiento de pila por medio del parámetro proto en /goform/form2IPQoSTcAdd • https://github.com/EPhaha/IOT_vuln/tree/main/d-link/dir-816/6 https://www.dlink.com/en/security-bulletin • CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 1CVE-2022-29326
https://notcve.org/view.php?id=CVE-2022-29326
D-Link DIR-816 A2_v1.10CNB04 was discovered to contain a stack overflow via the addhostfilter parameter in /goform/websHostFilter. Se ha detectado que D-Link DIR-816 versión A2_v1.10CNB04, contiene un desbordamiento de pila por medio del parámetro addhostfilter en /goform/websHostFilter • https://github.com/EPhaha/IOT_vuln/tree/main/d-link/dir-816/7 https://www.dlink.com/en/security-bulletin • CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 1CVE-2022-29329
https://notcve.org/view.php?id=CVE-2022-29329
D-Link DAP-1330_OSS-firmware_1.00b21 was discovered to contain a heap overflow via the devicename parameter in /goform/setDeviceSettings. Se ha detectado que D-Link DAP-1330_OSS-firmware_1.00b21 contiene un desbordamiento de pila por medio del parámetro devicename en /goform/setDeviceSettings • https://github.com/EPhaha/IOT_vuln/tree/main/d-link/dap-1330/2 https://www.dlink.com/en/security-bulletin • CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 1CVE-2022-29328
https://notcve.org/view.php?id=CVE-2022-29328
D-Link DAP-1330_OSS-firmware_1.00b21 was discovered to contain a stack overflow via the function checkvalidupgrade. Se ha detectado que D-Link DAP-1330_OSS-firmware_1.00b21 contiene un desbordamiento de pila por medio de la función checkvalidupgrade • https://github.com/EPhaha/IOT_vuln/tree/main/d-link/dap-1330/1 https://www.dlink.com/en/security-bulletin • CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 1CVE-2022-28573
https://notcve.org/view.php?id=CVE-2022-28573
D-Link DIR-823-Pro v1.0.2 was discovered to contain a command injection vulnerability in the function SetNTPserverSeting. This vulnerability allows attackers to execute arbitrary commands via the system_time_timezone parameter. Se ha detectado que D-Link DIR-823-Pro versión v1.0.2, contiene una vulnerabilidad de inyección de comandos en la función SetNTPserverSeting. Esta vulnerabilidad permite a atacantes ejecutar comandos arbitrarios por medio del parámetro system_time_timezone • https://github.com/F0und-icu/TempName/tree/main/Dlink-823pro https://www.dlink.com/en/security-bulletin • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •