Vulnerabilities > Dlink

DATE CVE VULNERABILITY TITLE RISK
2022-12-23 CVE-2022-46563 Out-of-bounds Write vulnerability in Dlink Dir-882 A1 Firmware 1.30B06
D-Link DIR-882 DIR882A1_FW130B06, DIR-878 DIR_878_FW1.30B08 was discovered to contain a stack overflow via the Password parameter in the SetDynamicDNSSettings module.
network
low complexity
dlink CWE-787
7.2
2022-12-23 CVE-2022-46566 Out-of-bounds Write vulnerability in Dlink Dir-882 A1 Firmware 1.30B06
D-Link DIR-882 DIR882A1_FW130B06, DIR-878 DIR_878_FW1.30B08 was discovered to contain a stack overflow via the Password parameter in the SetQuickVPNSettings module.
network
low complexity
dlink CWE-787
7.2
2022-12-23 CVE-2022-46568 Out-of-bounds Write vulnerability in Dlink Dir-882 A1 Firmware 1.30B06
D-Link DIR-882 DIR882A1_FW130B06, DIR-878 DIR_878_FW1.30B08 was discovered to contain a stack overflow via the AccountPassword parameter in the SetSysEmailSettings module.
network
low complexity
dlink CWE-787
7.2
2022-12-23 CVE-2022-46569 Out-of-bounds Write vulnerability in Dlink Dir-882 A1 Firmware 1.30B06
D-Link DIR-882 DIR882A1_FW130B06, DIR-878 DIR_878_FW1.30B08 was discovered to contain a stack overflow via the Key parameter in the SetWLanRadioSecurity module.
network
low complexity
dlink CWE-787
7.2
2022-12-23 CVE-2022-46570 Out-of-bounds Write vulnerability in Dlink Dir-882 A1 Firmware 1.30B06
D-Link DIR-882 DIR882A1_FW130B06, DIR-878 DIR_878_FW1.30B08 was discovered to contain a stack overflow via the Password parameter in the SetWan3Settings module.
network
low complexity
dlink CWE-787
7.2
2022-12-23 CVE-2022-46641 Command Injection vulnerability in Dlink Dir-846 Firmware 100A43
D-Link DIR-846 A1_FW100A43 was discovered to contain a command injection vulnerability via the lan(0)_dhcps_staticlist parameter in the SetIpMacBindSettings function.
network
low complexity
dlink CWE-77
critical
9.9
2022-12-23 CVE-2022-46642 Command Injection vulnerability in Dlink Dir-846 Firmware 100A43
D-Link DIR-846 A1_FW100A43 was discovered to contain a command injection vulnerability via the auto_upgrade_hour parameter in the SetAutoUpgradeInfo function.
network
low complexity
dlink CWE-77
critical
9.9
2022-12-20 CVE-2022-38873 Unspecified vulnerability in Dlink Dap-2695 Firmware and Dap-3320 Firmware
D-Link devices DAP-2310 v2.10rc036 and earlier, DAP-2330 v1.06rc020 and earlier, DAP-2360 v2.10rc050 and earlier, DAP-2553 v3.10rc031 and earlier, DAP-2660 v1.15rc093 and earlier, DAP-2690 v3.20rc106 and earlier, DAP-2695 v1.20rc119_beta31 and earlier, DAP-3320 v1.05rc027 beta and earlier, DAP-3662 v1.05rc047 and earlier allows attackers to cause a Denial of Service (DoS) via uploading a crafted firmware after modifying the firmware header.
network
low complexity
dlink
7.5
2022-12-20 CVE-2022-46076 Incorrect Authorization vulnerability in Dlink Dir-869 Firmware and Dir-869Ax Firmware
D-Link DIR-869 DIR869Ax_FW102B15 is vulnerable to Authentication Bypass via phpcgi.
network
low complexity
dlink CWE-863
7.5
2022-12-14 CVE-2022-44832 Command Injection vulnerability in Dlink Dir-3040 Firmware 120B03
D-Link DIR-3040 device with firmware 120B03 was discovered to contain a command injection vulnerability via the SetTriggerLEDBlink function.
network
low complexity
dlink CWE-77
critical
9.8