Vulnerabilities (CVE)

Filtered by vendor Dlink Subscribe
Total 943 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-24345 1 Dlink 2 Dir-605l, Dir-605l Firmware 2024-11-21 N/A 8.8 HIGH
D-Link N300 WI-FI Router DIR-605L v2.13B01 was discovered to contain a stack overflow via the curTime parameter at /goform/formSetWanDhcpplus.
CVE-2023-24344 1 Dlink 2 Dir-605l, Dir-605l Firmware 2024-11-21 N/A 8.8 HIGH
D-Link N300 WI-FI Router DIR-605L v2.13B01 was discovered to contain a stack overflow via the webpage parameter at /goform/formWlanGuestSetup.
CVE-2023-24343 1 Dlink 2 Dir-605l, Dir-605l Firmware 2024-11-21 N/A 8.8 HIGH
D-Link N300 WI-FI Router DIR-605L v2.13B01 was discovered to contain a stack overflow via the curTime parameter at /goform/formSchedule.
CVE-2023-0127 1 Dlink 2 Dwl-2600ap, Dwl-2600ap Firmware 2024-11-21 N/A 7.8 HIGH
A command injection vulnerability in the firmware_update command, in the device's restricted telnet interface, allows an authenticated attacker to execute arbitrary commands as root.
CVE-2022-48108 1 Dlink 2 Dir 878, Dir 878 Firmware 2024-11-21 N/A 9.8 CRITICAL
D-Link DIR_878_FW1.30B08 was discovered to contain a command injection vulnerability via the component /SetNetworkSettings/SubnetMask. This vulnerability allows attackers to escalate privileges to root via a crafted payload.
CVE-2022-48107 1 Dlink 2 Dir 878, Dir 878 Firmware 2024-11-21 N/A 9.8 CRITICAL
D-Link DIR_878_FW1.30B08 was discovered to contain a command injection vulnerability via the component /setnetworksettings/IPAddress. This vulnerability allows attackers to escalate privileges to root via a crafted payload.
CVE-2022-47035 1 Dlink 2 Dir-825, Dir-825 Firmware 2024-11-21 N/A 9.8 CRITICAL
Buffer Overflow Vulnerability in D-Link DIR-825 v1.33.0.44ebdd4-embedded and below allows attacker to execute arbitrary code via the GetConfig method to the /CPE endpoint.
CVE-2022-46642 1 Dlink 2 Dir-846, Dir-846 Firmware 2024-11-21 N/A 9.9 CRITICAL
D-Link DIR-846 A1_FW100A43 was discovered to contain a command injection vulnerability via the auto_upgrade_hour parameter in the SetAutoUpgradeInfo function.
CVE-2022-46641 1 Dlink 2 Dir-846, Dir-846 Firmware 2024-11-21 N/A 9.9 CRITICAL
D-Link DIR-846 A1_FW100A43 was discovered to contain a command injection vulnerability via the lan(0)_dhcps_staticlist parameter in the SetIpMacBindSettings function.
CVE-2022-46570 1 Dlink 2 Dir-882 A1, Dir-882 A1 Firmware 2024-11-21 N/A 7.2 HIGH
D-Link DIR-882 DIR882A1_FW130B06, DIR-878 DIR_878_FW1.30B08 was discovered to contain a stack overflow via the Password parameter in the SetWan3Settings module.
CVE-2022-46569 1 Dlink 2 Dir-882 A1, Dir-882 A1 Firmware 2024-11-21 N/A 7.2 HIGH
D-Link DIR-882 DIR882A1_FW130B06, DIR-878 DIR_878_FW1.30B08 was discovered to contain a stack overflow via the Key parameter in the SetWLanRadioSecurity module.
CVE-2022-46568 1 Dlink 2 Dir-882 A1, Dir-882 A1 Firmware 2024-11-21 N/A 7.2 HIGH
D-Link DIR-882 DIR882A1_FW130B06, DIR-878 DIR_878_FW1.30B08 was discovered to contain a stack overflow via the AccountPassword parameter in the SetSysEmailSettings module.
CVE-2022-46566 1 Dlink 2 Dir-882 A1, Dir-882 A1 Firmware 2024-11-21 N/A 7.2 HIGH
D-Link DIR-882 DIR882A1_FW130B06, DIR-878 DIR_878_FW1.30B08 was discovered to contain a stack overflow via the Password parameter in the SetQuickVPNSettings module.
CVE-2022-46563 1 Dlink 2 Dir-882 A1, Dir-882 A1 Firmware 2024-11-21 N/A 7.2 HIGH
D-Link DIR-882 DIR882A1_FW130B06, DIR-878 DIR_878_FW1.30B08 was discovered to contain a stack overflow via the Password parameter in the SetDynamicDNSSettings module.
CVE-2022-46562 1 Dlink 2 Dir-882 A1, Dir-882 A1 Firmware 2024-11-21 N/A 7.2 HIGH
D-Link DIR-882 DIR882A1_FW130B06, DIR-878 DIR_878_FW1.30B08 was discovered to contain a stack overflow via the PSK parameter in the SetQuickVPNSettings module.
CVE-2022-46561 1 Dlink 2 Dir-882 A1, Dir-882 A1 Firmware 2024-11-21 N/A 7.2 HIGH
D-Link DIR-882 DIR882A1_FW130B06, DIR-878 DIR_878_FW1.30B08 was discovered to contain a stack overflow via the Password parameter in the SetWanSettings module.
CVE-2022-46560 1 Dlink 2 Dir-882 A1, Dir-882 A1 Firmware 2024-11-21 N/A 7.2 HIGH
D-Link DIR-882 DIR882A1_FW130B06, DIR-878 DIR_878_FW1.30B08 was discovered to contain a stack overflow via the Password parameter in the SetWan2Settings module.
CVE-2022-46552 1 Dlink 2 Dir-846, Dir-846 Firmware 2024-11-21 N/A 8.8 HIGH
D-Link DIR-846 Firmware FW100A53DBR was discovered to contain a remote command execution (RCE) vulnerability via the lan(0)_dhcps_staticlist parameter. This vulnerability is exploited via a crafted POST request.
CVE-2022-46476 1 Dlink 2 Dir-859 A1, Dir-859 A1 Firmware 2024-11-21 N/A 9.8 CRITICAL
D-Link DIR-859 A1 1.05 was discovered to contain a command injection vulnerability via the service= variable in the soapcgi_main function.
CVE-2022-46475 1 Dlink 2 Dir-645, Dir-645 Firmware 2024-11-21 N/A 9.8 CRITICAL
D-Link DIR 645A1 1.06B01_Beta01 was discovered to contain a stack overflow via the service= variable in the genacgi_main function.