Vulnerabilities (CVE)

Filtered by vendor Dlink Subscribe
Total 719 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-26612 1 Dlink 2 Dir-823g, Dir-823g Firmware 2024-02-04 N/A 9.8 CRITICAL
D-Link DIR-823G firmware version 1.02B05 has a buffer overflow vulnerability, which originates from the HostName field in SetParentsControlInfo.
CVE-2023-27719 1 Dlink 2 Dir878, Dir878 Firmware 2024-02-04 N/A 9.8 CRITICAL
D-Link DIR878 1.30B08 was discovered to contain a stack overflow in the sub_478360 function. This vulnerability allows attackers to cause a Denial of Service (DoS) or execute arbitrary code via a crafted payload.
CVE-2023-34856 1 Dlink 2 Di-7500g-ci, Di-7500g-ci Firmware 2024-02-04 N/A 5.4 MEDIUM
A Cross Site Scripting (XSS) vulnerability in D-Link DI-7500G-CI-19.05.29A allows attackers to execute arbitrary code via uploading a crafted HTML file to the interface /auth_pic.cgi.
CVE-2023-30063 1 Dlink 2 Dir-890l, Dir-890l Firmware 2024-02-04 N/A 7.5 HIGH
D-Link DIR-890L FW1.10 A1 is vulnerable to Authentication bypass.
CVE-2022-44204 1 Dlink 2 Dir-3060, Dir-3060 Firmware 2024-02-04 N/A 9.8 CRITICAL
D-Link DIR3060 DIR3060A1_FW111B04.bin is vulnerable to Buffer Overflow.
CVE-2023-0127 1 Dlink 2 Dwl-2600ap, Dwl-2600ap Firmware 2024-02-04 N/A 7.8 HIGH
A command injection vulnerability in the firmware_update command, in the device's restricted telnet interface, allows an authenticated attacker to execute arbitrary commands as root.
CVE-2022-46562 1 Dlink 2 Dir-882 A1, Dir-882 A1 Firmware 2024-02-04 N/A 7.2 HIGH
D-Link DIR-882 DIR882A1_FW130B06, DIR-878 DIR_878_FW1.30B08 was discovered to contain a stack overflow via the PSK parameter in the SetQuickVPNSettings module.
CVE-2023-25279 1 Dlink 2 Dir-820l, Dir-820l Firmware 2024-02-04 N/A 9.8 CRITICAL
OS Command injection vulnerability in D-Link DIR820LA1_FW105B03 allows attackers to escalate privileges to root via a crafted payload.
CVE-2022-44804 1 Dlink 2 Dir-882, Dir-882 Firmware 2024-02-04 N/A 9.8 CRITICAL
D-Link DIR-882 1.10B02 and1.20B06 is vulnerable to Buffer Overflow via the websRedirect function.
CVE-2023-24343 1 Dlink 2 Dir-605l, Dir-605l Firmware 2024-02-04 N/A 8.8 HIGH
D-Link N300 WI-FI Router DIR-605L v2.13B01 was discovered to contain a stack overflow via the curTime parameter at /goform/formSchedule.
CVE-2023-24349 1 Dlink 2 Dir-605l, Dir-605l Firmware 2024-02-04 N/A 9.8 CRITICAL
D-Link N300 WI-FI Router DIR-605L v2.13B01 was discovered to contain a stack overflow via the curTime parameter at /goform/formSetRoute.
CVE-2023-24350 1 Dlink 2 Dir-605l, Dir-605l Firmware 2024-02-04 N/A 9.8 CRITICAL
D-Link N300 WI-FI Router DIR-605L v2.13B01 was discovered to contain a stack overflow via the config.smtp_email_subject parameter at /goform/formSetEmail.
CVE-2022-48107 1 Dlink 2 Dir 878, Dir 878 Firmware 2024-02-04 N/A 9.8 CRITICAL
D-Link DIR_878_FW1.30B08 was discovered to contain a command injection vulnerability via the component /setnetworksettings/IPAddress. This vulnerability allows attackers to escalate privileges to root via a crafted payload.
CVE-2023-25280 1 Dlink 2 Dir820la1, Dir820la1 Firmware 2024-02-04 N/A 9.8 CRITICAL
OS Command injection vulnerability in D-Link DIR820LA1_FW105B03 allows attackers to escalate privileges to root via a crafted payload with the ping_addr parameter to ping.ccp.
CVE-2023-24348 1 Dlink 2 Dir-605l, Dir-605l Firmware 2024-02-04 N/A 9.8 CRITICAL
D-Link N300 WI-FI Router DIR-605L v2.13B01 was discovered to contain a stack overflow via the curTime parameter at /goform/formSetACLFilter.
CVE-2022-46561 1 Dlink 2 Dir-882 A1, Dir-882 A1 Firmware 2024-02-04 N/A 7.2 HIGH
D-Link DIR-882 DIR882A1_FW130B06, DIR-878 DIR_878_FW1.30B08 was discovered to contain a stack overflow via the Password parameter in the SetWanSettings module.
CVE-2023-24344 1 Dlink 2 Dir-605l, Dir-605l Firmware 2024-02-04 N/A 8.8 HIGH
D-Link N300 WI-FI Router DIR-605L v2.13B01 was discovered to contain a stack overflow via the webpage parameter at /goform/formWlanGuestSetup.
CVE-2022-44808 1 Dlink 2 Dir-823g, Dir-823g Firmware 2024-02-04 N/A 9.8 CRITICAL
A command injection vulnerability has been found on D-Link DIR-823G devices with firmware version 1.02B03 that allows an attacker to execute arbitrary operating system commands through well-designed /HNAP1 requests. Before the HNAP API function can process the request, the system function executes an untrusted command that triggers the vulnerability.
CVE-2023-24351 1 Dlink 2 Dir-605l, Dir-605l Firmware 2024-02-04 N/A 9.8 CRITICAL
D-Link N300 WI-FI Router DIR-605L v2.13B01 was discovered to contain a stack overflow via the FILECODE parameter at /goform/formLogin.
CVE-2023-24347 1 Dlink 2 Dir-605l, Dir-605l Firmware 2024-02-04 N/A 8.8 HIGH
D-Link N300 WI-FI Router DIR-605L v2.13B01 was discovered to contain a stack overflow via the webpage parameter at /goform/formSetWanDhcpplus.