cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-11068,https://securityvulnerability.io/vulnerability/CVE-2024-11068,Unauthorized Access to User Passwords via Incorrect Use of Privileged APIs,"The D-Link DSL6740C modem is exposed to a serious security risk due to an incorrect use of privileged APIs. This vulnerability enables unauthenticated remote attackers to manipulate user passwords, thus gaining unauthorized access to services such as Web, SSH, and Telnet. Any malicious actor can exploit this flaw to compromise user accounts, highlighting the importance of prompt security measures.",D-link,Dsl6740c,9.8,CRITICAL,0.0004299999854993075,false,false,false,false,,false,false,2024-11-11T08:05:18.980Z,0
CVE-2024-11067,https://securityvulnerability.io/vulnerability/CVE-2024-11067,Unauthenticated Remote Attackers Can Read Arbitrary System Files via Path Traversal Vulnerability in D-Link DSL6740C Modem,"A Path Traversal vulnerability exists in the D-Link DSL6740C modem, which enables unauthenticated remote attackers to access and read arbitrary system files. The flaw is further exacerbated by the device's default password, derived from its MAC address. Through exploitation of this vulnerability, attackers can discover the MAC address and subsequently attempt to gain unauthorized access to the device using the default credentials.",D-link,Dsl6740c,7.5,HIGH,0.0004299999854993075,false,false,false,false,,false,false,2024-11-11T08:00:59.881Z,0
CVE-2024-11066,https://securityvulnerability.io/vulnerability/CVE-2024-11066,D-Link DSL6740C Modem Vulnerable to OS Command Injection,"The D-Link DSL6740C modem is susceptible to an OS Command Injection vulnerability, enabling remote attackers who possess administrator credentials to inject and execute arbitrary system commands through a designated web interface. This flaw might allow unauthorized manipulation of the modem's operating system, which could lead to further exploitation of the network security. It is critical for users and network administrators to evaluate their device settings and apply necessary security updates to mitigate potential risks associated with this vulnerability.",D-link,Dsl6740c,7.2,HIGH,0.0004299999854993075,false,false,false,false,,false,false,2024-11-11T07:49:38.566Z,0
CVE-2024-11065,https://securityvulnerability.io/vulnerability/CVE-2024-11065,D-Link DSL6740C Modem Exposed to OS Command Injection Attacks,"The D-Link DSL6740C modem is susceptible to an OS Command Injection vulnerability, where remote attackers, having obtained administrator privileges, can exploit this flaw. This allows them to inject and run arbitrary system commands through specific features accessible via SSH and Telnet. This exploitation can lead to unauthorized access and manipulation of the modem's firmware and associated network infrastructure.",D-link,Dsl6740c,7.2,HIGH,0.0005200000014156103,false,false,false,false,,false,false,2024-11-11T07:45:48.179Z,0
CVE-2024-11064,https://securityvulnerability.io/vulnerability/CVE-2024-11064,D-Link DSL6740C Modem Vulnerable to OS Command Injection,"The D-Link DSL6740C modem is susceptible to an OS Command Injection vulnerability that enables remote attackers with administrator credentials to potentially inject and execute arbitrary system commands. This security flaw takes advantage of specific functionalities that are accessible through SSH and Telnet, underscoring the importance of stringent access controls and regular firmware updates to safeguard against unauthorized access and exploitation.",D-link,Dsl6740c,7.2,HIGH,0.0005200000014156103,false,false,false,false,,false,false,2024-11-11T07:35:00.344Z,0
CVE-2024-11063,https://securityvulnerability.io/vulnerability/CVE-2024-11063,D-Link DSL6740C Modem Vulnerable to OS Command Injection Attacks,"The D-Link DSL6740C modem is susceptible to an OS Command Injection vulnerability. This security flaw allows remote attackers who possess administrator privileges to inject and execute arbitrary system commands via specific functionalities provided by SSH and Telnet. Exploitation of this vulnerability could lead to unauthorized access and manipulation of the system, emphasizing the importance of securing network devices against potential threats.",D-link,Dsl6740c,7.2,HIGH,0.0005200000014156103,false,false,false,false,,false,false,2024-11-11T07:30:21.003Z,0
CVE-2024-11062,https://securityvulnerability.io/vulnerability/CVE-2024-11062,D-Link DSL6740C Modem Vulnerable to OS Command Injection,"The D-Link DSL6740C modem is vulnerable to an OS Command Injection flaw that permits remote attackers with administrative privileges to exploit specific functionalities associated with SSH and Telnet. This security issue allows for the injection and execution of arbitrary system commands, potentially compromising the modem's integrity and the security of the entire network. This vulnerability emphasizes the importance of securing devices against such remote exploits, reinforcing the need for timely updates and security measures.",D-link,Dsl6740c,7.2,HIGH,0.0005200000014156103,false,false,false,false,,false,false,2024-11-11T07:28:09.879Z,0