cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2020-24581,https://securityvulnerability.io/vulnerability/CVE-2020-24581,Remote Code Execution Vulnerability in D-Link DSL-2888A Routers,"A vulnerability exists in D-Link DSL-2888A devices due to the presence of an undocumented feature, execute_cmd.cgi. This feature, which is not accessible via the standard web interface, allows authenticated users to execute arbitrary operating system commands. As a result, attackers with valid credentials can exploit this flaw to gain control over the device, potentially leading to unauthorized access or manipulation of connected systems.",D-Link,Dsl2888a Firmware,8,HIGH,0.002959999954327941,false,,false,false,false,,,false,false,,2020-12-22T18:05:02.000Z,0
CVE-2020-24580,https://securityvulnerability.io/vulnerability/CVE-2020-24580,Authentication Bypass in D-Link DSL-2888A Routers,"A vulnerability in D-Link DSL-2888A routers allows attackers to bypass authentication mechanisms, enabling them to assign static IP addresses previously allocated to legitimate users. This presents significant security risks, as unauthorized modifications can disrupt network services and compromise user privacy.",D-Link,Dsl2888a Firmware,7.5,HIGH,0.0007300000288523734,false,,false,false,false,,,false,false,,2020-12-22T18:04:56.000Z,0
CVE-2020-24579,https://securityvulnerability.io/vulnerability/CVE-2020-24579,Authentication Bypass in D-Link DSL-2888A Devices,"A vulnerability exists in D-Link DSL-2888A devices that allows unauthenticated attackers to bypass authentication mechanisms. This flaw permits unauthorized access to sensitive authenticated pages and functionalities. The issue is present in all firmware versions prior to AU_2.31_V1.1.47ae55, exposing users to potential unauthorized control over device settings and configurations. Users are strongly advised to upgrade their firmware to mitigate this risk.",D-Link,Dsl2888a Firmware,8.8,HIGH,0.03764000162482262,false,,false,false,false,,,false,false,,2020-12-22T18:04:52.000Z,0
CVE-2020-24578,https://securityvulnerability.io/vulnerability/CVE-2020-24578,Misconfigured FTP Service on D-Link DSL-2888A Devices,"A misconfigured FTP service on D-Link DSL-2888A devices allows unauthorized network users to access critical system folders. This security flaw enables attackers to download sensitive files, including password hashes, which can jeopardize device security and user privacy. To mitigate this risk, users should update their firmware to versions AU_2.31_V1.1.47ae55 or later.",D-Link,Dsl2888a Firmware,6.5,MEDIUM,0.0007300000288523734,false,,false,false,false,,,false,false,,2020-12-22T18:04:24.000Z,0