CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-8941

Diagnostics functionality on D-Link DSL-3782 devices with firmware EU v. 1.01 has a buffer overflow, allowing authenticated remote attackers to execute arbitrary code via a long Addr value to the 'set Diagnostics_Entry' function in an HTTP request, related to /userfs/bin/tcapi.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.221

EPSS Ranking 95.5%

CVSS Severity

CVSS v3 Score 8.8

CVSS v2 Score 9.0

References

https://github.com/SECFORCE/CVE-2018-8941
https://github.com/SECFORCE/CVE-2018-8941

Products affected by CVE-2018-8941

Dlink » Dsl-3782 » Version: N/A

cpe:2.3:h:dlink:dsl-3782:-
D-Link » Dsl-3782 Firmware » Version: 1.01

cpe:2.3:o:d-link:dsl-3782_firmware:1.01

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-8941

Products

Pricing

Contact Us