Vulnerabilities > Dlink

DATE	CVE	VULNERABILITY TITLE	RISK
2020-12-22	CVE-2020-24581	OS Command Injection vulnerability in Dlink Dsl2888A Firmware An issue was discovered on D-Link DSL-2888A devices with firmware prior to AU_2.31_V1.1.47ae55. low complexity dlink CWE-78	8.0
2020-12-22	CVE-2020-24580	Missing Authentication for Critical Function vulnerability in Dlink Dsl2888A Firmware An issue was discovered on D-Link DSL-2888A devices with firmware prior to AU_2.31_V1.1.47ae55. high complexity dlink CWE-306	7.5
2020-12-22	CVE-2020-24579	Improper Authentication vulnerability in Dlink Dsl2888A Firmware An issue was discovered on D-Link DSL-2888A devices with firmware prior to AU_2.31_V1.1.47ae55. low complexity dlink CWE-287	8.8
2020-12-22	CVE-2020-24578	Incorrect Permission Assignment for Critical Resource vulnerability in Dlink Dsl2888A Firmware An issue was discovered on D-Link DSL-2888A devices with firmware prior to AU_2.31_V1.1.47ae55. low complexity dlink CWE-732	6.5
2020-12-15	CVE-2020-25759	Improper Input Validation vulnerability in Dlink products An issue was discovered on D-Link DSR-250 3.17 devices. network low complexity dlink CWE-20 critical	9.0
2020-12-15	CVE-2020-25758	Improper Validation of Integrity Check Value vulnerability in Dlink products An issue was discovered on D-Link DSR-250 3.17 devices. network low complexity dlink CWE-354 critical	9.0
2020-12-15	CVE-2020-25757	Improper Input Validation vulnerability in Dlink products A lack of input validation and access controls in Lua CGIs on D-Link DSR VPN routers may result in arbitrary input being passed to system command APIs, resulting in arbitrary command execution with root privileges. low complexity dlink CWE-20	8.3
2020-10-08	CVE-2020-26567	Missing Authentication for Critical Function vulnerability in Dlink Dsr-250N Firmware An issue was discovered on D-Link DSR-250N before 3.17B devices. local low complexity dlink CWE-306	5.5
2020-10-06	CVE-2020-26582	Command Injection vulnerability in Dlink Dap-1360U Firmware D-Link DAP-1360U before 3.0.1 devices allow remote authenticated users to execute arbitrary commands via shell metacharacters in the IP JSON value for ping (aka res_config_action=3&res_config_id=18). network low complexity dlink CWE-77 critical	9.0
2020-09-19	CVE-2020-25786	Cross-site Scripting vulnerability in Dlink products webinc/js/info.php on D-Link DIR-816L 2.06.B09_BETA and DIR-803 1.04.B02 devices allows XSS via the HTTP Referer header. network low complexity dlink CWE-79	6.1

Vulnerabilities > Dlink {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Dlink"}]}

Vulnerabilities > Dlink