Vulnerabilities > Dlink > DIR 882 Firmware

DATE CVE VULNERABILITY TITLE RISK
2024-01-19 CVE-2024-0717 Unspecified vulnerability in Dlink products
A vulnerability classified as critical was found in D-Link DAP-1360, DIR-300, DIR-615, DIR-615GF, DIR-615S, DIR-615T, DIR-620, DIR-620S, DIR-806A, DIR-815, DIR-815AC, DIR-815S, DIR-816, DIR-820, DIR-822, DIR-825, DIR-825AC, DIR-825ACF, DIR-825ACG1, DIR-841, DIR-842, DIR-842S, DIR-843, DIR-853, DIR-878, DIR-882, DIR-1210, DIR-1260, DIR-2150, DIR-X1530, DIR-X1860, DSL-224, DSL-245GR, DSL-2640U, DSL-2750U, DSL-G2452GR, DVG-5402G, DVG-5402G, DVG-5402GFRU, DVG-N5402G, DVG-N5402G-IL, DWM-312W, DWM-321, DWR-921, DWR-953 and Good Line Router v2 up to 20240112.
network
low complexity
dlink
5.3
2022-11-22 CVE-2022-44804 Out-of-bounds Write vulnerability in Dlink Dir-882 Firmware 1.10B02/1.20B06
D-Link DIR-882 1.10B02 and1.20B06 is vulnerable to Buffer Overflow via the websRedirect function.
network
low complexity
dlink CWE-787
critical
9.8
2022-11-22 CVE-2022-44806 Out-of-bounds Write vulnerability in Dlink Dir-882 Firmware 1.10B02/1.20B06
D-Link DIR-882 1.10B02 and 1.20B06 is vulnerable to Buffer Overflow.
network
low complexity
dlink CWE-787
critical
9.8
2022-11-22 CVE-2022-44807 Out-of-bounds Write vulnerability in Dlink Dir-882 Firmware 1.10B02/1.20B06
D-Link DIR-882 1.10B02 and 1.20B06 is vulnerable to Buffer Overflow via webGetVarString.
network
low complexity
dlink CWE-787
critical
9.8
2022-05-10 CVE-2022-28895 OS Command Injection vulnerability in Dlink Dir-882 Firmware 1.30B06
A command injection vulnerability in the component /setnetworksettings/IPAddress of D-Link DIR882 DIR882A1_FW130B06 allows attackers to escalate privileges to root via a crafted payload.
network
low complexity
dlink CWE-78
critical
9.8
2022-05-10 CVE-2022-28896 OS Command Injection vulnerability in Dlink Dir-882 Firmware 1.30B06
A command injection vulnerability in the component /setnetworksettings/SubnetMask of D-Link DIR882 DIR882A1_FW130B06 allows attackers to escalate privileges to root via a crafted payload.
network
low complexity
dlink CWE-78
critical
9.8
2022-05-10 CVE-2022-28901 OS Command Injection vulnerability in Dlink Dir-882 Firmware 1.30B06
A command injection vulnerability in the component /SetTriggerLEDBlink/Blink of D-Link DIR882 DIR882A1_FW130B06 allows attackers to escalate privileges to root via a crafted payload.
network
low complexity
dlink CWE-78
critical
9.8
2022-05-02 CVE-2022-28571 OS Command Injection vulnerability in Dlink Dir-882 Firmware 1.30B06
D-link 882 DIR882A1_FW130B06 was discovered to contain a command injection vulnerability in`/usr/bin/cli.
network
low complexity
dlink CWE-78
critical
9.8
2022-04-11 CVE-2022-1262 OS Command Injection vulnerability in Dlink products
A command injection vulnerability in the protest binary allows an attacker with access to the remote command line interface to execute arbitrary commands as root.
local
low complexity
dlink CWE-78
7.2
2022-02-04 CVE-2021-44880 Command Injection vulnerability in Dlink Dir-878 Firmware and Dir-882 Firmware
D-Link devices DIR_878 DIR_878_FW1.30B08_Hotfix_02 and DIR_882 DIR_882_FW1.30B06_Hotfix_02 were discovered to contain a command injection vulnerability in the system function.
network
low complexity
dlink CWE-77
critical
10.0