Vulnerabilities > Dlink

DATE CVE VULNERABILITY TITLE RISK
2022-08-22 CVE-2022-37133 Improper Resource Shutdown or Release vulnerability in Dlink Dir-816 Firmware 1.10Cnb04
D-link DIR-816 A2_v1.10CNB04.img reboots the router without authentication via /goform/doReboot.
network
low complexity
dlink CWE-404
7.5
2022-08-22 CVE-2022-37134 Improper Validation of Specified Quantity in Input vulnerability in Dlink Dir-816 Firmware 1.10Cnb04
D-link DIR-816 A2_v1.10CNB04.img is vulnerable to Buffer Overflow via /goform/form2Wan.cgi.
network
low complexity
dlink CWE-1284
critical
9.8
2022-08-15 CVE-2022-36523 Command Injection vulnerability in Dlink Go-Rt-Ac750 Firmware 101B03/200B02
D-Link Go-RT-AC750 GORTAC750_revA_v101b03 & GO-RT-AC750_revB_FWv200b02 is vulnerable to command injection via /htdocs/upnpinc/gena.php.
network
low complexity
dlink CWE-77
critical
9.8
2022-08-15 CVE-2022-36524 Improper Authentication vulnerability in Dlink Go-Rt-Ac750 Firmware 101B03/200B02
D-Link GO-RT-AC750 GORTAC750_revA_v101b03 & GO-RT-AC750_revB_FWv200b02 is vulnerable to Static Default Credentials via /etc/init0.d/S80telnetd.sh.
network
low complexity
dlink CWE-287
7.5
2022-08-15 CVE-2022-36525 Classic Buffer Overflow vulnerability in Dlink Go-Rt-Ac750 Firmware 101B03/200B02
D-Link Go-RT-AC750 GORTAC750_revA_v101b03 & GO-RT-AC750_revB_FWv200b02 is vulnerable to Buffer Overflow via authenticationcgi_main.
network
low complexity
dlink CWE-120
critical
9.8
2022-08-15 CVE-2022-36526 Unspecified vulnerability in Dlink Go-Rt-Ac750 Firmware 101B03/200B02
D-Link GO-RT-AC750 GORTAC750_revA_v101b03 & GO-RT-AC750_revB_FWv200b02 is vulnerable to Authentication Bypass via function phpcgi_main in cgibin.
network
low complexity
dlink
7.5
2022-08-03 CVE-2022-34973 Classic Buffer Overflow vulnerability in Dlink Dir820La1 Firmware 106B02
D-Link DIR820LA1_FW106B02 was discovered to contain a buffer overflow via the nextPage parameter at ping.ccp.
network
low complexity
dlink CWE-120
7.5
2022-08-03 CVE-2022-34974 Command Injection vulnerability in Dlink Dir820La1 Firmware 102B22
D-Link DIR810LA1_FW102B22 was discovered to contain a command injection vulnerability via the Ping_addr function.
network
low complexity
dlink CWE-77
critical
9.8
2022-08-03 CVE-2022-35619 Unspecified vulnerability in Dlink Dir-818L Firmware 105B01
D-LINK DIR-818LW A1:DIR818L_FW105b01 was discovered to contain a remote code execution (RCE) vulnerability via the function ssdpcgi_main.
network
low complexity
dlink
critical
9.8
2022-08-03 CVE-2022-35620 Unspecified vulnerability in Dlink Dir-818L Firmware 105B01
D-LINK DIR-818LW A1:DIR818L_FW105b01 was discovered to contain a remote code execution (RCE) vulnerability via the function binary.soapcgi_main.
network
low complexity
dlink
critical
9.8