Jylsec

**Name of the Vulnerable Software and Affected Versions** D-Link DIR-619L version 2.04B04 **Description** A critical issue was found in the `formEasySetupWizard` function, where the manipulation of the `curTime` argument leads to a buffer overflow. This issue can be exploited remotely. The vendor was notified about this issue, and it only affects products that are no longer supported. **Recommendations** For D-Link DIR-619L version 2.04B04, as a temporary workaround, consider disabling the `formEasySetupWizard` function until a patch is available. However, since the product is no longer supported, at the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** D-Link DIR-605L version 2.13B01 **Description** A critical issue has been discovered, affecting the `wake on lan` function. The manipulation of the `mac` argument leads to command injection. This issue can be exploited remotely. The vendor was notified about this disclosure. It's noted that this issue only affects products that are no longer supported by the maintainer. **Recommendations** For D-Link DIR-605L version 2.13B01, as a temporary workaround, consider disabling the `wake on lan` function until a patch is available. Restrict access to the `mac` argument in the affected function to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** D-Link DIR-605L version 2.13B01 **Description** A critical issue was found in the function `formSetWAN Wizard534`, where the manipulation of the argument `curTime` leads to a buffer overflow. This can be initiated remotely. The vendor was contacted about this disclosure. This issue only affects products that are no longer supported by the maintainer. **Recommendations** For D-Link DIR-605L version 2.13B01, as a temporary workaround, consider disabling the `formSetWAN Wizard534` function until a patch is available. However, since the product is no longer supported, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** D-Link DIR-605L version 2.13B01 **Description** A critical issue affects the `formSetWAN Wizard55` function, where manipulation of the `curTime` argument leads to a buffer overflow. This can be initiated remotely. The vendor was contacted about this disclosure. It only affects products that are no longer supported by the maintainer. **Recommendations** For D-Link DIR-605L version 2.13B01, as a temporary workaround, consider disabling the `formSetWAN Wizard55` function until a patch is available. Restrict access to the `curTime` argument in the affected function to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** D-Link DIR-605L version 2.13B01 **Description** A critical issue affects the function sub 454F2C, where the manipulation of the argument `sysCmd` leads to command injection. The attack may be initiated remotely. This issue only affects products that are no longer supported by the maintainer. **Recommendations** For D-Link DIR-605L version 2.13B01, as a temporary workaround, consider restricting access to the function sub 454F2C to minimize the risk of exploitation. Avoid using the argument `sysCmd` until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** D-Link DIR-619L version 2.04B04 **Description** A critical issue has been found in the function `formEasySetupWizard3`, where the manipulation of the argument `wan connected` leads to a buffer overflow. This issue can be exploited remotely. The vendor was contacted about this disclosure. It's noted that this vulnerability only affects products that are no longer supported by the maintainer. **Recommendations** For D-Link DIR-619L version 2.04B04, as a temporary workaround, consider disabling the `formEasySetupWizard3` function until a patch is available. However, since the product is no longer supported, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** 2N Access Commander versions 1.14 and older **Description** The issue allows an attacker with Admin access privileges to read a hardcoded AES passphrase, which can be used to decrypt certain data within backup files. **Recommendations** For 2N Access Commander versions 1.14 and older, consider restricting access to the backup files and the hardcoded AES passphrase until a patch is available. As a temporary workaround, limit the use of Admin access privileges to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Edimax IC-6220DC and IC-5150W versions up to 3.06 **Description** A critical issue affects the `cgiFormString` function of the `ipcam cgi` file. The manipulation of the `host` argument leads to command injection. The vendor was contacted about this disclosure but did not respond. **Recommendations** For Edimax IC-6220DC and IC-5150W versions up to 3.06, upgrade to a version above 3.06 as soon as possible. As a temporary workaround, consider restricting access to the `cgiFormString` function until a patch is available. Avoid using the `host` parameter in the affected `ipcam cgi` file until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Vivotek SD9364 VVTK-0103f (affected versions not specified) **Description** A critical issue affects the function `getenv` of the file `upload file.cgi`. The manipulation of the argument `QUERY STRING` leads to command injection. The attack may be initiated remotely. This issue only affects products that are no longer supported by the maintainer. The vendor confirmed that the affected release tree is end-of-life. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Vivotek IB8367A VVTK-0100b (affected versions not specified) **Description** A critical vulnerability has been found in the function `getenv` of the file `upload file.cgi`. The manipulation of the argument `QUERY STRING` leads to command injection. It is possible to launch the attack remotely. This issue only affects products that are no longer supported by the maintainer. The vendor confirmed that the affected release tree is end-of-life. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Vivotek CC8160 VVTK-0100d (affected versions not specified) **Description** A critical vulnerability affects the function `getenv` of the file `upload file.cgi`. The manipulation of the argument `QUERY STRING` leads to command injection. It is possible to initiate the attack remotely. This issue poses a significant threat with a high likelihood of exploitation in the wild. The vendor has confirmed that the affected release tree is end-of-life. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Vivotek SD9364 VVTK-0103f (affected versions not specified) **Description** A critical vulnerability affects the `httpd` component, specifically the `read` function. The manipulation of the `Content-Length` argument leads to a stack-based buffer overflow. This issue can be exploited remotely. The exploit has been publicly disclosed. It is noted that this vulnerability only affects products that are no longer supported by the maintainer, and the vendor has confirmed the affected release tree is end-of-life. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Vivotek CC8160 VVTK-0100d (affected versions not specified) **Description** A critical vulnerability was found in the httpd component, specifically in the function `read`. The manipulation of the argument `Content-Length` leads to a stack-based buffer overflow. This issue can be exploited remotely. The exploit has been disclosed to the public. It is noted that this vulnerability only affects products that are no longer supported by the maintainer, and the vendor has confirmed that the affected release tree is end-of-life. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Totolink N200RE version 9.3.5u.6139 B20201216 **Description** A critical issue affects the `setParentalRules` function of the `/cgi-bin/cstecgi.cgi` file, where manipulation of the `eTime` argument leads to a stack-based buffer overflow. This can be initiated remotely, potentially impacting the confidentiality, integrity, and availability of protected information. The issue may also involve the `week` and `sTime` parameters. An exploit has been disclosed publicly. **Recommendations** For Totolink N200RE version 9.3.5u.6139 B20201216, as a temporary workaround, consider disabling the `setParentalRules` function until a patch is available. Restrict access to the `/cgi-bin/cstecgi.cgi` file to minimize the risk of exploitation. Avoid using the `eTime`, `week`, and `sTime` parameters in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Totolink N200RE version 9.3.5u.6139 B20201216 **Description** A critical issue was found in the function `setOpModeCfg` of the file `/cgi-bin/cstecgi.cgi`, where the manipulation of the argument `pppoeUser` leads to a stack-based buffer overflow. This issue can be exploited remotely, potentially affecting the confidentiality, integrity, and availability of protected information. The exploit has been disclosed to the public. **Recommendations** For Totolink N200RE version 9.3.5u.6139 B20201216, as a temporary workaround, consider disabling the `setOpModeCfg` function until a patch is available. Restrict access to the `/cgi-bin/cstecgi.cgi` file to minimize the risk of exploitation. Avoid using the parameter `pppoeUser` in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Totolink N200RE versions 9.3.5u.6139 B20201216 **Description** The issue is related to a stack-based buffer overflow in the `setDiagnosisCfg()` function of the `/cgi-bin/cstecgi.cgi` file, caused by the manipulation of the `ip` argument. This can be exploited remotely, potentially affecting the confidentiality, integrity, and availability of protected information. **Recommendations** For Totolink N200RE version 9.3.5u.6139 B20201216, as a temporary workaround, consider disabling the `setDiagnosisCfg()` function until a patch is available. Restrict access to the `/cgi-bin/cstecgi.cgi` file to minimize the risk of exploitation. Avoid using the `ip` argument in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Totolink N200RE version 9.3.5u.6139 B20201216 **Description** A critical vulnerability has been found, affecting the `main` function of the `/cgi-bin/cstecgi.cgi` file. This issue leads to a stack-based buffer overflow, which can be exploited remotely. The vulnerability may impact the confidentiality, integrity, and availability of protected information. **Recommendations** For Totolink N200RE version 9.3.5u.6139 B20201216, as a temporary workaround, consider disabling the `main` function of the `/cgi-bin/cstecgi.cgi` file until a patch is available. Restrict access to the `/cgi-bin/cstecgi.cgi` file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Totolink N200RE version 9.3.5u.6139 B20201216 **Description** A critical issue affects the `setTracerouteCfg` function of the `/cgi-bin/cstecgi.cgi` file, where manipulation of the `command` argument leads to a stack-based buffer overflow. This can be initiated remotely and may impact the confidentiality, integrity, and availability of protected information. **Recommendations** For Totolink N200RE version 9.3.5u.6139 B20201216, as a temporary workaround, consider disabling the `setTracerouteCfg` function until a patch is available. Restrict access to the `/cgi-bin/cstecgi.cgi` file to minimize the risk of exploitation. Avoid using the `command` parameter in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Totolink N200RE version 9.3.5u.6139 B20201216 **Description** A critical vulnerability was found in the Totolink N200RE, affecting the `setIpPortFilterRules` function of the `/cgi-bin/cstecgi.cgi` file. The manipulation of the `ePort` argument leads to a stack-based buffer overflow. The attack can be launched remotely. The issue is related to the handling of the `sPort` parameter, which can cause a buffer overflow in memory, potentially allowing a remote attacker to impact the confidentiality, integrity, and availability of protected information. **Recommendations** For Totolink N200RE version 9.3.5u.6139 B20201216, as a temporary workaround, consider disabling the `setIpPortFilterRules` function until a patch is available. Restrict access to the `/cgi-bin/cstecgi.cgi` file to minimize the risk of exploitation. Avoid using the `ePort` and `sPort` parameters in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Totolink N200RE version 9.3.5u.6139 B20201216 **Description** A critical issue has been found in the function `setLanguageCfg` of the file `/cgi-bin/cstecgi.cgi`, where the manipulation of the argument `lang` leads to a stack-based buffer overflow. This can be exploited remotely, potentially affecting the confidentiality, integrity, and availability of protected information. **Recommendations** For Totolink N200RE version 9.3.5u.6139 B20201216, as a temporary workaround, consider disabling the `setLanguageCfg` function until a patch is available. Restrict access to the `/cgi-bin/cstecgi.cgi` file to minimize the risk of exploitation. Avoid using the `lang` parameter in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this issue.