Vulnerabilities > Dlink > DWR 116 Firmware > 1.05
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-12-21 | CVE-2018-18008 | Use of Hard-coded Credentials vulnerability in Dlink products spaces.htm on multiple D-Link devices (DSL, DIR, DWR) allows remote unauthenticated attackers to discover admin credentials. | 5.0 |
| 2018-10-17 | CVE-2018-10824 | Insufficiently Protected Credentials vulnerability in Dlink products An issue was discovered on D-Link DWR-116 through 1.06, DIR-140L through 1.02, DIR-640L through 1.02, DWR-512 through 2.02, DWR-712 through 2.02, DWR-912 through 2.02, DWR-921 through 2.02, and DWR-111 through 1.01 devices. | 9.8 |
| 2018-10-17 | CVE-2018-10823 | OS Command Injection vulnerability in Dlink products An issue was discovered on D-Link DWR-116 through 1.06, DWR-512 through 2.02, DWR-712 through 2.02, DWR-912 through 2.02, DWR-921 through 2.02, and DWR-111 through 1.01 devices. | 8.8 |
| 2018-10-17 | CVE-2018-10822 | Path Traversal vulnerability in Dlink products Directory traversal vulnerability in the web interface on D-Link DWR-116 through 1.06, DIR-140L through 1.02, DIR-640L through 1.02, DWR-512 through 2.02, DWR-712 through 2.02, DWR-912 through 2.02, DWR-921 through 2.02, and DWR-111 through 1.01 devices allows remote attackers to read arbitrary files via a /.. | 7.5 |