Dlink

Dcs-931l Firmware

4 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2019-10999

Exploit
  • EPSS 35.8%
  • Published 06.05.2019 20:29:01
  • Last modified 21.11.2024 04:20:19

The D-Link DCS series of Wi-Fi cameras contains a stack-based buffer overflow in alphapd, the camera's web server. The overflow allows a remotely authenticated attacker to execute arbitrary code by providing a long string in the WEPEncryption paramet...

8.8

CVE-2017-7852

Exploit
  • EPSS 1%
  • Published 24.04.2017 10:59:00
  • Last modified 20.04.2025 01:37:25

D-Link DCS cameras have a weak/insecure CrossDomain.XML file that allows sites hosting malicious Flash objects to access and/or change the device's settings via a CSRF attack. This is because of the 'allow-access-from domain' child element set to *, ...

9

CVE-2015-2049

  • EPSS 82.87%
  • Published 23.02.2015 17:59:06
  • Last modified 12.04.2025 10:46:40

Unrestricted file upload vulnerability in D-Link DCS-931L with firmware 1.04 and earlier allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension.

6.8

CVE-2015-2048

  • EPSS 0.07%
  • Published 23.02.2015 17:59:05
  • Last modified 12.04.2025 10:46:40

Cross-site request forgery (CSRF) vulnerability in D-Link DCS-931L with firmware 1.04 and earlier allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.