14isnot40/vul_discovery

Releases0

vulnerabilities description

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2022-42156 ↗	Oct 13, 2022Thursday, 13 October 2022, 19:15	8.8 HIGH	—
D-Link COVR 1200,1203 v1.08 was discovered to contain a command injection vulnerability via the tomography_ping_number parameter at function SetNetworkTomographySettings.
CVE-2022-42159 ↗	Oct 13, 2022Thursday, 13 October 2022, 19:15	4.3 MEDIUM	—
D-Link COVR 1200,1202,1203 v1.08 was discovered to have a predictable seed in a Pseudo-Random Number Generator.
CVE-2022-42160 ↗	Oct 13, 2022Thursday, 13 October 2022, 19:15	8.8 HIGH	—
D-Link COVR 1200,1202,1203 v1.08 was discovered to contain a command injection vulnerability via the system_time_timezone parameter at function SetNTPServerSettings.
CVE-2022-42161 ↗	Oct 13, 2022Thursday, 13 October 2022, 19:15	8.8 HIGH	—
D-Link COVR 1200,1202,1203 v1.08 was discovered to contain a command injection vulnerability via the /SetTriggerWPS/PIN parameter at function SetTriggerWPS.
CVE-2020-11528 ↗	Apr 4, 2020Saturday, 4 April 2020, 17:15	7.5 HIGH	5 MEDIUM
bit2spr 1992-06-07 has a stack-based buffer overflow (129-byte write) in conv_bitmap in bit2spr.c via a long line in a bitmap file.