Vulnerabilities > Dlink > Dir820La1 Firmware

DATE CVE VULNERABILITY TITLE RISK
2023-03-16 CVE-2023-25280 OS Command Injection vulnerability in Dlink Dir820La1 Firmware 105B03
OS Command injection vulnerability in D-Link DIR820LA1_FW105B03 allows attackers to escalate privileges to root via a crafted payload with the ping_addr parameter to ping.ccp.
network
low complexity
dlink CWE-78
critical
 9.8
9.8
2023-03-16 CVE-2023-25281 Out-of-bounds Write vulnerability in Dlink Dir820La1 Firmware 105B03
A stack overflow vulnerability exists in pingV4Msg component in D-Link DIR820LA1_FW105B03, allows attackers to cause a denial of service via the nextPage parameter to ping.ccp.
network
low complexity
dlink CWE-787
7.5
7.5
2022-08-03 CVE-2022-34973 Classic Buffer Overflow vulnerability in Dlink Dir820La1 Firmware 106B02
D-Link DIR820LA1_FW106B02 was discovered to contain a buffer overflow via the nextPage parameter at ping.ccp.
network
low complexity
dlink CWE-120
7.5
7.5
2022-08-03 CVE-2022-34974 Command Injection vulnerability in Dlink Dir820La1 Firmware 102B22
D-Link DIR810LA1_FW102B22 was discovered to contain a command injection vulnerability via the Ping_addr function.
network
low complexity
dlink CWE-77
critical
 9.8
9.8