Vulnerabilities > Dlink > DIR 878 Firmware > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-04-09 CVE-2023-27720 Out-of-bounds Write vulnerability in Dlink Dir-878 Firmware 1.30B08
D-Link DIR878 1.30B08 was discovered to contain a stack overflow in the sub_48d630 function.
network
low complexity
dlink CWE-787
critical
 9.8
9.8
2023-04-07 CVE-2023-24800 Out-of-bounds Write vulnerability in Dlink Dir-878 Firmware 1.20B05
D-Link DIR878 DIR_878_FW120B05 was discovered to contain a stack overflow in the sub_495220 function.
network
low complexity
dlink CWE-787
critical
 9.8
9.8
2023-04-07 CVE-2023-24799 Out-of-bounds Write vulnerability in Dlink Dir-878 Firmware 1.20B05
D-Link DIR878 DIR_878_FW120B05 was discovered to contain a stack overflow in the sub_48AF78 function.
network
low complexity
dlink CWE-787
critical
 9.8
9.8
2023-04-07 CVE-2023-24798 Out-of-bounds Write vulnerability in Dlink Dir-878 Firmware 1.20B05
D-Link DIR878 DIR_878_FW120B05 was discovered to contain a stack overflow in the sub_475FB0 function.
network
low complexity
dlink CWE-787
critical
 9.8
9.8
2023-01-27 CVE-2022-48108 OS Command Injection vulnerability in Dlink DIR 878 Firmware 1.30B08
D-Link DIR_878_FW1.30B08 was discovered to contain a command injection vulnerability via the component /SetNetworkSettings/SubnetMask.
network
low complexity
dlink CWE-78
critical
 9.8
9.8
2023-01-27 CVE-2022-48107 OS Command Injection vulnerability in Dlink DIR 878 Firmware 1.30B08
D-Link DIR_878_FW1.30B08 was discovered to contain a command injection vulnerability via the component /setnetworksettings/IPAddress.
network
low complexity
dlink CWE-78
critical
 9.8
9.8
2022-11-22 CVE-2022-44801 Unspecified vulnerability in Dlink Dir-878 Firmware 1.02B05
D-Link DIR-878 1.02B05 is vulnerable to Incorrect Access Control.
network
low complexity
dlink
critical
 9.8
9.8
2022-11-22 CVE-2022-44202 Out-of-bounds Write vulnerability in Dlink Dir-878 Firmware 1.02B04/1.02B05
D-Link DIR878 1.02B04 and 1.02B05 are vulnerable to Buffer Overflow.
network
low complexity
dlink CWE-787
critical
 9.8
9.8
2022-10-19 CVE-2022-43184 OS Command Injection vulnerability in Dlink Dir-878 Firmware 1.30B08
D-Link DIR878 1.30B08 Hotfix_04 was discovered to contain a command injection vulnerability via the component /bin/proc.cgi.
network
low complexity
dlink CWE-78
critical
 9.8
9.8
2022-02-04 CVE-2021-44882 Command Injection vulnerability in Dlink Dir-878 Firmware
D-Link device DIR_878_FW1.30B08_Hotfix_02 was discovered to contain a command injection vulnerability in the twsystem function.
network
low complexity
dlink CWE-77
critical
 9.8
9.8