Vulnerabilities > Dlink > Covr 1203 Firmware > 1.08

DATE CVE VULNERABILITY TITLE RISK
2022-10-13 CVE-2022-42156 Command Injection vulnerability in Dlink products
D-Link COVR 1200,1203 v1.08 was discovered to contain a command injection vulnerability via the tomography_ping_number parameter at function SetNetworkTomographySettings.
network
low complexity
dlink CWE-77
8.8
8.8
2022-10-13 CVE-2022-42159 Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) vulnerability in Dlink products
D-Link COVR 1200,1202,1203 v1.08 was discovered to have a predictable seed in a Pseudo-Random Number Generator.
network
low complexity
dlink CWE-335
4.3
4.3
2022-10-13 CVE-2022-42160 Command Injection vulnerability in Dlink products
D-Link COVR 1200,1202,1203 v1.08 was discovered to contain a command injection vulnerability via the system_time_timezone parameter at function SetNTPServerSettings.
network
low complexity
dlink CWE-77
8.8
8.8
2022-10-13 CVE-2022-42161 Command Injection vulnerability in Dlink products
D-Link COVR 1200,1202,1203 v1.08 was discovered to contain a command injection vulnerability via the /SetTriggerWPS/PIN parameter at function SetTriggerWPS.
network
low complexity
dlink CWE-77
8.8
8.8