Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2022-44929: CVE-2022-44929

An access control issue in D-Link DVG-G5402SP GE_1.03 allows unauthenticated attackers to escalate privileges via arbitrarily editing VoIP SIB profiles.

CVE
Open in Source
#auth

CVE ID: CVE-2022-44929

CVE Author: Momen Eldawakhly (Cyber Guy)

Description:

An access control issue in D-Link DVG-G5402SP GE_1.03 allows unauthenticated attackers to escalate privileges via arbitrarily editing VoIP SIB profiles.

PoC Image:

Before Changing

Changing Request [Unauthenticated]

After Changing

Related news

CVE-2022-44930: CVE-2022-44930

D-Link DHP-W310AV 3.10EU was discovered to contain a command injection vulnerability via the System Checks function.

CVE-2022-44928: CVE-2022-44928

D-Link DVG-G5402SP GE_1.03 was discovered to contain a command injection vulnerability via the Maintenance function.

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda
CVE
CVE-2023-6905
CVE
CVE-2023-6903
CVE
CVE-2023-6904
CVE
CVE-2023-3907
CVE