- EPSS 2.71%
- Veröffentlicht 29.06.2026 07:00:11
- Zuletzt bearbeitet 30.06.2026 17:31:09
A vulnerability has been found in D-Link DCS-935L 1.10.01. This affects the function sub_400E40 of the file setconf.cgi of the component POST Parameter Handler. Such manipulation of the argument UID leads to os command injection. The attack can be la...
CVE-2026-12174
- EPSS 0.58%
- Veröffentlicht 13.06.2026 20:15:12
- Zuletzt bearbeitet 16.06.2026 15:27:14
A security vulnerability has been detected in D-Link DCS-935L 1.10.01. This issue affects the function snprintf of the file /web/cgi-bin/greece/rhea of the component HTTP Handler. Such manipulation of the argument data leads to format string. The att...
CVE-2026-8260
- EPSS 1%
- Veröffentlicht 11.05.2026 02:16:27
- Zuletzt bearbeitet 12.05.2026 19:45:33
A vulnerability was found in D-Link DCS-935L up to 1.10.01. The impacted element is the function SetDeviceSettings of the file /web/cgi-bin/hnap/hnap_service of the component HNAP Service. The manipulation of the argument AdminPassword results in buf...
CVE-2025-10779
- EPSS 0.82%
- Veröffentlicht 22.09.2025 03:02:07
- Zuletzt bearbeitet 25.09.2025 20:01:52
A vulnerability was found in D-Link DCS-935L up to 1.13.01. The impacted element is the function sub_402280 of the file /HNAP1/. The manipulation of the argument HNAP_AUTH/SOAPAction results in stack-based buffer overflow. The attack may be launched ...
- EPSS 9.53%
- Veröffentlicht 07.01.2020 23:15:10
- Zuletzt bearbeitet 21.11.2024 04:31:47
This vulnerability allows remote attackers to execute arbitrary code on affected installations of D-Link DCS-960L v1.07.102. Authentication is not required to exploit this vulnerability. The specific flaw exists within the HNAP service, which listens...