Vulnerabilities > Dlink

DATE	CVE	VULNERABILITY TITLE	RISK
2022-11-22	CVE-2022-44808	OS Command Injection vulnerability in Dlink Dir-823G Firmware 1.02B03 A command injection vulnerability has been found on D-Link DIR-823G devices with firmware version 1.02B03 that allows an attacker to execute arbitrary operating system commands through well-designed /HNAP1 requests. network low complexity dlink CWE-78 critical	9.8
2022-11-18	CVE-2022-44204	Classic Buffer Overflow vulnerability in Dlink Dir-3060 Firmware 1.11B04 D-Link DIR3060 DIR3060A1_FW111B04.bin is vulnerable to Buffer Overflow. network low complexity dlink CWE-120 critical	9.8
2022-11-17	CVE-2022-36785	Incorrect Authorization vulnerability in Dlink G Integrated Access Device4 Firmware 1.0 D-Link – G integrated Access Device4 Information Disclosure & Authorization Bypass. *Information Disclosure – file contains a URL with private IP at line 15 "login.asp" A. network low complexity dlink CWE-863	7.5
2022-11-17	CVE-2022-36786	Command Injection vulnerability in Dlink Dsl-224 Firmware DLINK - DSL-224 Post-auth RCE. DLINK router version 3.0.8 has an interface where you can configure NTP servers (Network Time Protocol) via jsonrpc API. It is possible to inject a command through this interface that will run with ROOT permissions on the router. network low complexity dlink CWE-77 critical	9.9
2022-11-03	CVE-2022-43109	Command Injection vulnerability in Dlink Dir-823G Firmware 1.0.2 D-Link DIR-823G v1.0.2 was found to contain a command injection vulnerability in the function SetNetworkTomographySettings. network low complexity dlink CWE-77 critical	9.8
2022-10-31	CVE-2020-21016	Unspecified vulnerability in Dlink Dir-846 Firmware 100A35 D-Link DIR-846 devices with firmware 100A35 allow remote attackers to execute arbitrary code as root via HNAP1/control/SetGuestWLanSettings.php. network low complexity dlink critical	9.8
2022-10-26	CVE-2022-42998	Out-of-bounds Write vulnerability in Dlink Dir-816 Firmware 1.10B05 D-Link DIR-816 A2 1.10 B05 was discovered to contain a stack overflow via the srcip parameter at /goform/form2IPQoSTcAdd. network low complexity dlink CWE-787 critical	9.8
2022-10-26	CVE-2022-42999	OS Command Injection vulnerability in Dlink Dir-816 Firmware 1.10B05 D-Link DIR-816 A2 1.10 B05 was discovered to contain multiple command injection vulnerabilities via the admuser and admpass parameters at /goform/setSysAdm. network low complexity dlink CWE-78	7.5
2022-10-26	CVE-2022-43000	Out-of-bounds Write vulnerability in Dlink Dir-816 Firmware 1.10B05 D-Link DIR-816 A2 1.10 B05 was discovered to contain a stack overflow via the wizardstep4_pskpwd parameter at /goform/form2WizardStep4. network low complexity dlink CWE-787 critical	9.8
2022-10-26	CVE-2022-43001	Out-of-bounds Write vulnerability in Dlink Dir-816 Firmware 1.10B05 D-Link DIR-816 A2 1.10 B05 was discovered to contain a stack overflow via the pskValue parameter in the setSecurity function. network low complexity dlink CWE-787 critical	9.8

Vulnerabilities > Dlink {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Dlink"}]}

Vulnerabilities > Dlink