Vulnerabilities > Dlink > DIR 845L Firmware

DATE CVE VULNERABILITY TITLE RISK
2022-08-28 CVE-2022-36755 Improper Authentication vulnerability in Dlink Dir-845L Firmware
D-Link DIR845L A1 contains a authentication vulnerability via an AUTHORIZED_GROUP=1 value, as demonstrated by a request for getcfg.php.
network
low complexity
dlink CWE-287
critical
 9.8
9.8
2022-08-28 CVE-2022-36756 Code Injection vulnerability in Dlink Dir-845L Firmware
DIR845L A1 v1.00-v1.03 is vulnerable to command injection via /htdocs/upnpinc/gena.php.
network
low complexity
dlink CWE-94
critical
 9.8
9.8
2022-08-28 CVE-2022-38557 Improper Authentication vulnerability in Dlink Dir-845L Firmware
D-Link DIR845L v1.00-v1.03 contains a Static Default Credential vulnerability in /etc/init0.d/S80telnetd.sh.
network
low complexity
dlink CWE-287
critical
 9.8
9.8