Vulnerabilities > D Link

DATE CVE VULNERABILITY TITLE RISK
2020-12-22 CVE-2020-24581 OS Command Injection vulnerability in D-Link Dsl2888A Firmware
An issue was discovered on D-Link DSL-2888A devices with firmware prior to AU_2.31_V1.1.47ae55.
low complexity
d-link CWE-78
7.7
2020-12-22 CVE-2020-24580 Improper Authentication vulnerability in D-Link Dsl2888A Firmware
An issue was discovered on D-Link DSL-2888A devices with firmware prior to AU_2.31_V1.1.47ae55.
5.4
2020-12-22 CVE-2020-24579 Improper Authentication vulnerability in D-Link Dsl2888A Firmware
An issue was discovered on D-Link DSL-2888A devices with firmware prior to AU_2.31_V1.1.47ae55.
low complexity
d-link CWE-287
5.8
2020-12-22 CVE-2020-24578 Incorrect Permission Assignment for Critical Resource vulnerability in D-Link Dsl2888A Firmware
An issue was discovered on D-Link DSL-2888A devices with firmware prior to AU_2.31_V1.1.47ae55.
low complexity
d-link CWE-732
3.3
2020-10-08 CVE-2020-26567 Missing Authentication FOR Critical Function vulnerability in D-Link Dsr-250N Firmware
An issue was discovered on D-Link DSR-250N before 3.17B devices.
local
low complexity
d-link CWE-306
4.9
2020-09-02 CVE-2020-25078 Unspecified vulnerability in D-Link Dcs-2530L Firmware and Dcs-2670L Firmware
An issue was discovered on D-Link DCS-2530L before 1.06.01 Hotfix and DCS-2670L through 2.02 devices.
network
low complexity
d-link
5.0
2020-08-18 CVE-2019-6258 Classic Buffer Overflow vulnerability in D-Link Dir-822 Firmware
D-Link DIR-822 Rev.Bx devices with firmware v.202KRb06 and older allow a buffer overflow via long MacAddress data in a /HNAP1/SetClientInfo HNAP protocol message, which is mishandled in /usr/sbin/udhcpd during reading of the /var/servd/LAN-1-udhcpd.conf file.
network
low complexity
d-link CWE-120
7.5
2020-07-23 CVE-2020-15633 Authentication Bypass Using AN Alternate Path OR Channel vulnerability in D-Link products
This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of D-Link DIR-867, DIR-878, and DIR-882 routers with firmware 1.20B10_BETA.
low complexity
d-link CWE-288
5.8
2020-07-22 CVE-2020-15895 Cross-Site Scripting vulnerability in D-Link Dir-816L Firmware 2.06/2.06.B09
An XSS issue was discovered on D-Link DIR-816L devices 2.x before 1.10b04Beta02.
network
d-link CWE-79
4.3
2020-07-22 CVE-2020-15894 Information Exposure vulnerability in D-Link Dir-816L Firmware 2.06/2.06.B09
An issue was discovered on D-Link DIR-816L devices 2.x before 1.10b04Beta02.
network
low complexity
d-link CWE-200
5.0