Skip to main content

Dsp W215 Firmware

4 CVEs product

Monthly

CVE-2021-29295 HIGH This Week

Null Pointer Dereference vulnerability exists in D-Link DSP-W215 1.10, which could let a remote malicious user cause a denial of servie via usr/bin/lighttpd. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Null Pointer Dereference D-Link Denial Of Service Dsp W215 Firmware
NVD
CVSS 3.1
7.5
EPSS
1.1%
CVE-2020-13136 HIGH This Week

D-Link DSP-W215 1.26b03 devices send an obfuscated hash that can be retrieved and understood by a network sniffer. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

D-Link Information Disclosure Dsp W215 Firmware
NVD
CVSS 3.1
7.5
EPSS
1.2%
CVE-2020-13135 MEDIUM This Month

D-Link DSP-W215 1.26b03 devices allow information disclosure by intercepting messages on the local network, as demonstrated by a Squid Proxy. Rated medium severity (CVSS 6.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

D-Link Information Disclosure Dsp W215 Firmware
NVD
CVSS 3.1
6.5
EPSS
0.8%
CVE-2014-3936 CRITICAL POC THREAT Emergency

Stack-based buffer overflow in the do_hnap function in www/my_cgi.cgi in D-Link DSP-W215 (Rev. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 84.3%.

RCE D-Link Buffer Overflow Dir505 Shareport Mobile Companion Firmware Dir505 Shareport Mobile Companion +4
NVD Exploit-DB
CVSS 2.0
10.0
EPSS
84.3%
Threat
6.0
EPSS 1% CVSS 7.5
HIGH This Week

Null Pointer Dereference vulnerability exists in D-Link DSP-W215 1.10, which could let a remote malicious user cause a denial of servie via usr/bin/lighttpd. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Null Pointer Dereference D-Link Denial Of Service +1
NVD
EPSS 1% CVSS 7.5
HIGH This Week

D-Link DSP-W215 1.26b03 devices send an obfuscated hash that can be retrieved and understood by a network sniffer. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

D-Link Information Disclosure Dsp W215 Firmware
NVD
EPSS 1% CVSS 6.5
MEDIUM This Month

D-Link DSP-W215 1.26b03 devices allow information disclosure by intercepting messages on the local network, as demonstrated by a Squid Proxy. Rated medium severity (CVSS 6.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

D-Link Information Disclosure Dsp W215 Firmware
NVD
EPSS 84% 6.0 CVSS 10.0
CRITICAL POC THREAT Emergency

Stack-based buffer overflow in the do_hnap function in www/my_cgi.cgi in D-Link DSP-W215 (Rev. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 84.3%.

RCE D-Link Buffer Overflow +6
NVD Exploit-DB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy