Vulnerabilities > D Link > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-11-15 | CVE-2017-7851 | Cross-Site Request Forgery (CSRF) vulnerability in D-Link Dcs-936L D-Link DCS-936L devices with firmware before 1.05.07 have an inadequate CSRF protection mechanism that requires the device's IP address to be a substring of the HTTP Referer header. | 8.8 |
| 2017-04-24 | CVE-2015-7245 | Path Traversal vulnerability in D-Link Dvg-N5402Sp Firmware W1000Cn00/W1000Cn03/W2000En00 Directory traversal vulnerability in D-Link DVG-N5402SP with firmware W1000CN-00, W1000CN-03, or W2000EN-00 allows remote attackers to read sensitive information via a .. | 7.5 |
| 2017-04-21 | CVE-2016-1559 | Information Exposure vulnerability in D-Link products D-Link DAP-1353 H/W vers. | 8.1 |
| 2017-04-04 | CVE-2017-7398 | Cross-Site Request Forgery (CSRF) vulnerability in D-Link Dir-615 Firmware 20.09 D-Link DIR-615 HW: T1 FW:20.09 is vulnerable to Cross-Site Request Forgery (CSRF) vulnerability. | 8.8 |
| 2017-03-22 | CVE-2017-5874 | Cross-Site Request Forgery (CSRF) vulnerability in D-Link Dir-600M Firmware CSRF exists on D-Link DIR-600M Rev. | 8.8 |
| 2017-03-06 | CVE-2017-5633 | Cross-Site Request Forgery (CSRF) vulnerability in D-Link Di-524 Firmware 9.01 Multiple cross-site request forgery (CSRF) vulnerabilities on the D-Link DI-524 Wireless Router with firmware 9.01 allow remote attackers to (1) change the admin password, (2) reboot the device, or (3) possibly have unspecified other impact via crafted requests to CGI programs. | 8.0 |
| 2007-06-05 | CVE-2007-0933 | Buffer Overflow vulnerability in D-Link DWL-G650 TIM Information Element Wireless Driver Beacon Buffer overflow in the wireless driver 6.0.0.18 for D-Link DWL-G650+ (Rev. | 7.8 |
| 2006-12-14 | CVE-2006-6538 | Denial-Of-Service vulnerability in D-Link Dwl-2000Ap+ 2.11 D-LINK DWL-2000AP+ firmware 2.11 allows remote attackers to cause (1) a denial of service (device reset) via a flood of ARP replies on the wired or wireless (radio) link and (2) a denial of service (device crash) via a flood of ARP requests on the wireless link. | 7.8 |
| 2005-05-20 | CVE-2005-1680 | Security Bypass vulnerability in DSL-562T D-Link DSL-502T, DSL-504T, DSL-562T, and DSL-G604T, when /cgi-bin/firmwarecfg is executed, allows remote attackers to bypass authentication (1) if their IP address already exists in /var/tmp/fw_ip or (2) if their request is the first, which causes /var/tmp/fw_ip to be created and contain their IP address. | 7.5 |
| 2004-08-31 | CVE-2004-1650 | Remote Configuration vulnerability in D-Link Dcs-900 Internet Camera 2.10/2.20/2.28 D-Link DCS-900 Internet Camera listens on UDP port 62976 for an IP address, which allows remote attackers to change the IP address of the camera via a UDP broadcast packet. | 7.5 |