Vulnerabilities > Dlink

DATE CVE VULNERABILITY TITLE RISK
2024-02-08 CVE-2024-24321 Command Injection vulnerability in Dlink Dir-816 Firmware 1.10Cnb05
An issue in Dlink DIR-816A2 v.1.10CNB05 allows a remote attacker to execute arbitrary code via the wizardstep4_ssid_2 parameter in the sub_42DA54 function.
network
low complexity
dlink CWE-77
critical
9.8
2024-02-06 CVE-2024-22852 Out-of-bounds Write vulnerability in Dlink Go-Rt-Ac750 Firmware 101B03
D-Link Go-RT-AC750 GORTAC750_A1_FW_v101b03 contains a stack-based buffer overflow via the function genacgi_main.
network
low complexity
dlink CWE-787
critical
9.8
2024-02-06 CVE-2024-22853 Use of Hard-coded Credentials vulnerability in Dlink Go-Rt-Ac750 Firmware 101B03
D-LINK Go-RT-AC750 GORTAC750_A1_FW_v101b03 has a hardcoded password for the Alphanetworks account, which allows remote attackers to obtain root access via a telnet session.
network
low complexity
dlink CWE-798
critical
9.8
2024-01-26 CVE-2024-0921 OS Command Injection vulnerability in Dlink Dir-816 A2 Firmware 1.10Cnb04
A vulnerability has been found in D-Link DIR-816 A2 1.10CNB04 and classified as critical.
network
low complexity
dlink CWE-78
critical
9.8
2024-01-26 CVE-2024-23624 Command Injection vulnerability in Dlink Dap-1650 Firmware
A command injection vulnerability exists in the gena.cgi module of D-Link DAP-1650 devices.
network
low complexity
dlink CWE-77
critical
9.8
2024-01-26 CVE-2024-23625 Command Injection vulnerability in Dlink Dap-1650 Firmware
A command injection vulnerability exists in D-Link DAP-1650 devices when handling UPnP SUBSCRIBE messages.
network
low complexity
dlink CWE-77
critical
9.8
2024-01-24 CVE-2024-22751 Out-of-bounds Write vulnerability in Dlink Dir-882 A1 Firmware 1.30B06
D-Link DIR-882 DIR882A1_FW130B06 was discovered to contain a stack overflow via the sub_477AA0 function.
network
low complexity
dlink CWE-787
critical
9.8
2024-01-24 CVE-2024-22651 Command Injection vulnerability in Dlink Dir-815 Firmware 1.0.1/1.04
There is a command injection vulnerability in the ssdpcgi_main function of cgibin binary in D-Link DIR-815 router firmware v1.04.
network
low complexity
dlink CWE-77
critical
9.8
2024-01-21 CVE-2024-0769 Path Traversal vulnerability in Dlink Dir-859 Firmware 1.06
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in D-Link DIR-859 1.06B01.
network
low complexity
dlink CWE-22
critical
9.8
2024-01-19 CVE-2024-0717 Unspecified vulnerability in Dlink products
A vulnerability classified as critical was found in D-Link DAP-1360, DIR-300, DIR-615, DIR-615GF, DIR-615S, DIR-615T, DIR-620, DIR-620S, DIR-806A, DIR-815, DIR-815AC, DIR-815S, DIR-816, DIR-820, DIR-822, DIR-825, DIR-825AC, DIR-825ACF, DIR-825ACG1, DIR-841, DIR-842, DIR-842S, DIR-843, DIR-853, DIR-878, DIR-882, DIR-1210, DIR-1260, DIR-2150, DIR-X1530, DIR-X1860, DSL-224, DSL-245GR, DSL-2640U, DSL-2750U, DSL-G2452GR, DVG-5402G, DVG-5402G, DVG-5402GFRU, DVG-N5402G, DVG-N5402G-IL, DWM-312W, DWM-321, DWR-921, DWR-953 and Good Line Router v2 up to 20240112.
network
low complexity
dlink
5.3