6 results (0.001 seconds)

CVSS: 8.8EPSS: 0%CPEs: 2EXPL: 1

D-Link DIR-865L Ax 1.20B01 Beta devices allow Command Injection. Los dispositivos D-Link DIR-865L Ax versión 1.20B01 Beta, permiten una Inyección de Comandos. • https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10174 https://unit42.paloaltonetworks.com/6-new-d-link-vulnerabilities-found-on-home-routers • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •

CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 1

D-Link DIR-865L Ax 1.20B01 Beta devices have Cleartext Storage of Sensitive Information. Los dispositivos D-Link DIR-865L Ax versión 1.20B01 Beta, presentan Almacenamiento de Información Confidencial en Texto Sin Cifrar. • https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10174 https://unit42.paloaltonetworks.com/6-new-d-link-vulnerabilities-found-on-home-routers • CWE-312: Cleartext Storage of Sensitive Information •

CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 1

D-Link DIR-865L Ax 1.20B01 Beta devices have a predictable seed in a Pseudo-Random Number Generator. Los dispositivos D-Link DIR-865L Ax versión 1.20B01 Beta, presentan un seed predecible en un Generador de Números Pseudoaleatorios. • https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10174 https://unit42.paloaltonetworks.com/6-new-d-link-vulnerabilities-found-on-home-routers • CWE-335: Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) •

CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 1

D-Link DIR-865L Ax 1.20B01 Beta devices have Inadequate Encryption Strength. Los dispositivos D-Link DIR-865L Ax versión 1.20B01 Beta, presentan una Fortaleza de Cifrado Inadecuada. • https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10174 https://unit42.paloaltonetworks.com/6-new-d-link-vulnerabilities-found-on-home-routers • CWE-326: Inadequate Encryption Strength •

CVSS: 8.8EPSS: 0%CPEs: 2EXPL: 1

D-Link DIR-865L Ax 1.20B01 Beta devices allow CSRF. Los dispositivos D-Link DIR-865L Ax versión 1.20B01 Beta, permiten un ataque de tipo CSRF. • https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10174 https://unit42.paloaltonetworks.com/6-new-d-link-vulnerabilities-found-on-home-routers • CWE-352: Cross-Site Request Forgery (CSRF) •