Vulnerabilities > Dlink > DIR 600 Firmware

DATE CVE VULNERABILITY TITLE RISK
2023-06-12 CVE-2023-33625 Command Injection vulnerability in Dlink Dir-600 Firmware 2.18
D-Link DIR-600 Hardware Version B5, Firmware Version 2.18 was discovered to contain a command injection vulnerability via the ST parameter in the lxmldbc_system() function.
network
low complexity
dlink CWE-77
critical
 9.8
9.8
2023-06-12 CVE-2023-33626 Out-of-bounds Write vulnerability in Dlink Dir-600 Firmware 2.18
D-Link DIR-600 Hardware Version B5, Firmware Version 2.18 was discovered to contain a stack overflow via the gena.cgi binary.
network
low complexity
dlink CWE-787
critical
 9.8
9.8
2019-06-11 CVE-2013-7471 Command Injection vulnerability in Dlink products
An issue was discovered in soap.cgi?service=WANIPConn1 on D-Link DIR-845 before v1.02b03, DIR-600 before v2.17b01, DIR-645 before v1.04b11, DIR-300 rev.
network
low complexity
dlink CWE-77
critical
 9.8
9.8
2015-01-13 CVE-2014-100005 Cross-Site Request Forgery (CSRF) vulnerability in Dlink Dir-600 Firmware 2.16Ww
Multiple cross-site request forgery (CSRF) vulnerabilities in D-Link DIR-600 router (rev.
network
low complexity
dlink CWE-352
8.8
8.8