Vulnerabilities > Dlink > DIR 825 Firmware > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-01-31 | CVE-2022-47035 | Classic Buffer Overflow vulnerability in Dlink Dir-825 Firmware 1.33.0.44Ebdd4Embedded Buffer Overflow Vulnerability in D-Link DIR-825 v1.33.0.44ebdd4-embedded and below allows attacker to execute arbitrary code via the GetConfig method to the /CPE endpoint. | 9.8 |
| 2022-04-27 | CVE-2021-46442 | Unspecified vulnerability in Dlink Dir-825 Firmware In the "webupg" binary of D-Link DIR-825 G1, attackers can bypass authentication through parameters "autoupgrade.asp", and perform functions such as downloading configuration files and updating firmware without authorization. | 9.8 |
| 2019-09-27 | CVE-2019-16920 | OS Command Injection vulnerability in Dlink products Unauthenticated remote code execution occurs in D-Link products such as DIR-655C, DIR-866L, DIR-652, and DHP-1565. | 9.8 |