Vulnerabilities > D Link > DIR 816 A2 Firmware > Critical

DATE CVE VULNERABILITY TITLE RISK
2018-12-20 CVE-2018-20305 Out-of-bounds Write vulnerability in D-Link Dir-816 A2 Firmware 1.10B05
D-Link DIR-816 A2 1.10 B05 devices allow arbitrary remote code execution without authentication via the newpass parameter.
network
low complexity
d-link CWE-787
critical
9.8
2018-05-13 CVE-2018-11013 Out-of-bounds Write vulnerability in D-Link Dir-816 A2 Firmware 1.10B05
Stack-based buffer overflow in the websRedirect function in GoAhead on D-Link DIR-816 A2 (CN) routers with firmware version 1.10B05 allows unauthenticated remote attackers to execute arbitrary code via a request with a long HTTP Host header.
network
low complexity
d-link CWE-787
critical
9.8