Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
a1 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2018-18698
An issue exists on Xiaomi Mi A1 tissot_sprout:8.1.0/OPM1.171019.026/V9.6.4.0.ODHMIFE devices. They store cleartext Wi-Fi passwords in logcat during the process of setting up the phone as a hotspot.
Mi Xiaomi Mi-a1 Firmware -
7.5
CVSSv3
CVE-2022-40946
On D-Link DIR-819 Firmware Version 1.06 Hardware Version A1 devices, it is possible to trigger a Denial of Service via the sys_token parameter in a cgi-bin/webproc?getpage=html/index.html request.
Dlink Dir-819 Firmware 1.06
1 Github repository
9.8
CVSSv3
CVE-2021-43722
D-Link DIR-645 1.03 A1 is vulnerable to Buffer Overflow. The hnap_main function in the cgibin handler uses sprintf to format the soapaction header onto the stack and has no limit on the size.
Dlink Dir-645 Firmware 1.03
9.8
CVSSv3
CVE-2018-14081
An issue exists on D-Link DIR-809 A1 up to and including 1.09, A2 up to and including 1.11, and Guest Zone up to and including 1.09 devices. Device passwords, such as the admin password and the WPA key, are stored in cleartext.
D-link Dir-809 A1 Firmware
D-link Dir-809 A2 Firmware
D-link Dir-809 Guestzone Firmware
NA
CVE-2014-3872
Multiple SQL injection vulnerabilities in the administration login page in D-Link DAP-1350 (Rev. A1) with firmware 1.14 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) username or (2) password.
Dlink Dap-1350 Firmware
Dlink Dap-1350 Firmware 1.10
Dlink Dap-1350 Rev. A1
NA
CVE-2008-4718
Directory traversal vulnerability in help/mini.php in X7 Chat 2.0.1 A1 and previous versions allows remote malicious users to include and execute arbitrary local files via directory traversal sequences in the help_file parameter, a different vector than CVE-2006-2156.
X7 Group X7 Chat 1.3.5b
X7 Group X7 Chat 1.3.4b
X7 Group X7 Chat 1.1.1b
X7 Group X7 Chat 1.0.0b
X7 Group X7 Chat
X7 Group X7 Chat 1.3.1b
X7 Group X7 Chat 1.3.0b
X7 Group X7 Chat 2.0.0
X7 Group X7 Chat 1.3.6
X7 Group X7 Chat 1.2.0b
X7 Group X7 Chat 1.1.2b
X7 Group X7 Chat 1.3.3b
X7 Group X7 Chat 1.3.2b
2 EDB exploits
9.8
CVSSv3
CVE-2018-9032
An authentication bypass vulnerability on D-Link DIR-850L Wireless AC1200 Dual Band Gigabit Cloud Router (Hardware Version : A1, B1; Firmware Version : 1.02-2.06) devices potentially allows malicious users to bypass SharePort Web Access Portal by directly visiting /category_view....
Dlink Dir-850l Firmware
1 EDB exploit
9.8
CVSSv3
CVE-2018-4023
An exploitable code execution vulnerability exists in the XML_UploadFile Wi-Fi command of the NT9665X Chipset firmware, running on the Anker Roav A1 Dashcam, version RoavA1SWV1.9. A specially crafted packet can cause a stack-based buffer overflow, resulting in code execution.
Anker-in Roav Dashcam A1 Firmware 1.9
7.5
CVSSv3
CVE-2018-4024
An exploitable denial-of-service vulnerability exists in the thumbnail display functionality of the NT9665X Chipset firmware, running on the Anker Roav A1 Dashcam, version RoavA1SWV1.9. A specially crafted packet can cause a null pointer dereference, resulting in a device reboot.
Anker-in Roav Dashcam A1 Firmware 1.9
NA
CVE-2007-0933
Buffer overflow in the wireless driver 6.0.0.18 for D-Link DWL-G650+ (Rev. A1) on Windows XP allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a beacon frame with a long TIM Information Element.
Microsoft Windows Xp
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »