Infosecdj

**Name of the Vulnerable Software and Affected Versions** Socomec DIRIS A-40 (affected versions not specified) **Description** A flaw exists in the web API implementation of the Socomec DIRIS A-40 power monitoring devices, listening on TCP port 80 by default. This allows network-adjacent attackers to bypass authentication. The vulnerability results from a lack of authentication checks before granting access to functionality. An attacker can exploit this to bypass authentication on the system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Pioneer DMH-WT7600NEX (affected versions not specified) Description: This issue allows physically present attackers to execute arbitrary code on affected installations of Pioneer DMH-WT7600NEX devices. The flaw exists within the software update verification process due to insufficient validation of data in the software update. An attacker can leverage this to execute code in the context of the device. Authentication is not required to exploit this issue. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Pioneer DMH-WT7600NEX (affected versions not specified) Description: This issue allows local attackers to bypass authentication on affected installations of Pioneer DMH-WT7600NEX devices. The flaw exists within the configuration of the application system-on-chip (SoC) due to the lack of a properly configured hardware root of trust. An attacker can leverage this issue to escalate privileges and execute arbitrary code in the context of the boot process. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Pioneer DMH-WT7600NEX (affected versions not specified) Description: This issue allows physically present attackers to bypass authentication on affected installations of Pioneer DMH-WT7600NEX devices. The specific flaw exists within the configuration of the operating system, resulting from the lack of properly configured protection for the root file system. An attacker can leverage this vulnerability to bypass authentication on the system. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Deep Sea Electronics DSE855 (affected versions not specified) Description: This issue allows network-adjacent attackers to execute arbitrary code on affected installations of Deep Sea Electronics DSE855 devices. Authentication is not required to exploit this issue. The specific flaw exists within the handling of multipart boundaries, resulting from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. An attacker can leverage this issue to execute code in the context of the device. Recommendations: At the moment, there is no information about a newer version that contains a fix for this issue.

Name of the Vulnerable Software and Affected Versions: Deep Sea Electronics DSE855 (affected versions not specified) Description: This issue allows network-adjacent attackers to bypass authentication on affected installations of Deep Sea Electronics DSE855 devices. The specific flaw exists within the web-based UI, resulting from the lack of authentication prior to allowing access to functionality. An attacker can leverage this to create a denial-of-service condition on the system. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Deep Sea Electronics DSE855 (affected versions not specified) Description: This issue allows network-adjacent attackers to execute arbitrary code on affected installations of Deep Sea Electronics DSE855 devices. The flaw exists within the handling of multipart form variables due to the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. An attacker can leverage this vulnerability to execute code in the context of the device. Authentication is not required to exploit this vulnerability. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Deep Sea Electronics DSE855 (affected versions not specified) Description: This issue allows network-adjacent attackers to bypass authentication on affected installations of Deep Sea Electronics DSE855 devices. The specific flaw exists within the web-based UI, resulting from the lack of authentication prior to allowing access to functionality. An attacker can leverage this issue to create a denial-of-service condition on the system. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Deep Sea Electronics DSE855 (affected versions not specified) Description: This issue allows network-adjacent attackers to create a denial-of-service condition on affected installations of Deep Sea Electronics DSE855 devices. The specific flaw exists within the handling of multipart boundaries, resulting from a logic error that can lead to an infinite loop. An attacker can leverage this to create a denial-of-service condition on the system. Authentication is not required to exploit this issue. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** D-Link DCS-8300LHV2 (affected versions not specified) **Description** This issue allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DCS-8300LHV2 IP cameras. The specific flaw exists within the handling of the `Authorization` header by the RTSP server, which listens on TCP port 554. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. An attacker can leverage this vulnerability to execute code in the context of root. Authentication is not required to exploit this issue. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** D-Link DAP-1325 (affected versions not specified) **Description** This issue allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. The specific flaw exists within the handling of XML data provided to the "HNAP1 SOAP endpoint". The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. An attacker can leverage this vulnerability to execute code in the context of root. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** D-Link DAP-1325 (affected versions not specified) **Description** This issue allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. Authentication is not required to exploit this issue. The specific flaw exists within the handling of a request parameter provided to the HNAP1 SOAP endpoint, specifically the "SetWLanRadioSettings Channel" command. The issue results from the lack of proper validation of a user-supplied string, `user-supplied string`, before using it to execute a system call. An attacker can leverage this issue to execute code in the context of root. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** D-Link DAP-1325 (affected versions not specified) **Description** This issue allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. The flaw exists within the handling of XML data provided to the "HNAP1 SOAP endpoint". The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. An attacker can leverage this vulnerability to execute code in the context of root. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** D-Link DAP-1325 (affected versions not specified) **Description** The issue is related to a buffer overflow in the D-Link DAP-1325 wireless signal amplifier's firmware, allowing remote attackers to execute arbitrary code. The specific flaw exists within the handling of XML data provided to the "HNAP1 SOAP endpoint". The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. An attacker can leverage this vulnerability to execute code in the context of root. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** D-Link DAP-1325 (affected versions not specified) **Description** The issue is related to a buffer overflow in the D-Link DAP-1325 wireless signal amplifier's firmware, allowing remote attackers to execute arbitrary code. This is due to the lack of proper validation of user-supplied data length before copying it to a fixed-length stack-based buffer, specifically within the handling of XML data provided to the HNAP1 SOAP endpoint `/HNAP1`. An attacker can leverage this to execute code in the context of root. No information is provided about the estimated number of potentially affected devices or real-world incidents. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** D-Link DAP-1325 (affected versions not specified) **Description** This issue allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. The flaw exists within the handling of XML data provided to the "HNAP1 SOAP endpoint". The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. An attacker can leverage this vulnerability to execute code in the context of root. Authentication is not required to exploit this vulnerability. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** D-Link DAP-1325 (affected versions not specified) **Description** This issue allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. The flaw exists within the handling of XML data provided to the "HNAP1 SOAP endpoint". The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. An attacker can leverage this vulnerability to execute code in the context of root. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** D-Link DAP-2622 (affected versions not specified) **Description** This issue allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. The specific flaw exists within the DDP service, resulting from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. An attacker can leverage this vulnerability to execute code in the context of root. Authentication is not required to exploit this vulnerability. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** D-Link DAP-2622 (affected versions not specified) **Description** This issue allows network-adjacent attackers to execute arbitrary code on affected installations. The flaw exists within the CLI service, which listens on TCP port 23, due to the lack of proper validation of a user-supplied string before using it to execute a system call. An attacker can leverage this vulnerability to execute code in the context of root. Authentication is required to exploit this vulnerability. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** D-Link DAP-1325 (affected versions not specified) **Description** This issue allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. The specific flaw exists within the handling of XML data provided to the "HNAP1 SOAP endpoint". The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. An attacker can leverage this vulnerability to execute code in the context of root. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability. As a temporary workaround, consider restricting access to the HNAP1 SOAP endpoint until a patch is available. Avoid providing unvalidated XML data to the endpoint to minimize the risk of exploitation.