cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2021-41504,https://securityvulnerability.io/vulnerability/CVE-2021-41504,Elevated Privileges Issue in D-Link IP Cameras,"An elevated privileges vulnerability exists in various D-Link IP cameras that utilize outdated versions of firmware. This issue arises from the implementation of digest-authentication in the cameras' command interface, which may open additional attack vectors. Malicious users within the local area network (LAN) can exploit this vulnerability to gain unauthorized access to the camera's configuration settings. It is crucial for users of affected models to be aware that this issue pertains exclusively to devices that are no longer receiving support from the vendor.",D-Link,Dcs-932l Firmware,8,HIGH,0.0005099999834783375,false,,false,false,false,,,false,false,,2021-09-24T19:30:35.000Z,0
CVE-2021-41503,https://securityvulnerability.io/vulnerability/CVE-2021-41503,Incorrect Access Control in D-Link IP Cameras Exposes Configuration to Malicious Users,"Certain D-Link IP cameras, specifically the DCS-5000L v1.05 and DCS-932L v2.17 and earlier versions, are vulnerable to incorrect access control. This vulnerability stems from the use of basic authentication in the command interface of the devices, which may enable unauthorized access to device configurations. Malicious users within the local area network (LAN) could exploit this security gap to manipulate camera settings or gain sensitive information. Notably, this issue affects products that are no longer supported by D-Link, making it crucial for users to take proactive measures to secure their devices.",D-Link,Dcs-932l Firmware,8,HIGH,0.0004400000034365803,false,,false,false,false,,,false,false,,2021-09-24T19:26:55.000Z,0
CVE-2012-4046,https://securityvulnerability.io/vulnerability/CVE-2012-4046,,"The D-Link DCS-932L camera with firmware 1.02 allows remote attackers to discover the password via a UDP broadcast packet, as demonstrated by running the D-Link Setup Wizard and reading the _paramR[""P""] value.",D-Link,"Dcs-932l Firmware,Dcs-932l",,,0.002259999979287386,false,,false,false,false,,,false,false,,2012-12-24T18:55:00.000Z,0