Vulnerabilities > Dlink
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-05-10 | CVE-2022-29327 | Out-of-bounds Write vulnerability in Dlink Dir-816 Firmware 1.10Cnb04 D-Link DIR-816 A2_v1.10CNB04 was discovered to contain a stack overflow via the urladd parameter in /goform/websURLFilterAddDel. | 9.8 |
| 2022-05-10 | CVE-2022-29328 | Out-of-bounds Write vulnerability in Dlink Dap-1330 Firmware 1.00.B21 D-Link DAP-1330_OSS-firmware_1.00b21 was discovered to contain a stack overflow via the function checkvalidupgrade. | 9.8 |
| 2022-05-10 | CVE-2022-29329 | Out-of-bounds Write vulnerability in Dlink Dap-1330 Firmware 1.00.B21 D-Link DAP-1330_OSS-firmware_1.00b21 was discovered to contain a heap overflow via the devicename parameter in /goform/setDeviceSettings. | 9.8 |
| 2022-05-02 | CVE-2022-28573 | OS Command Injection vulnerability in Dlink Dir-823 PRO Firmware 1.0.2 D-Link DIR-823-Pro v1.0.2 was discovered to contain a command injection vulnerability in the function SetNTPserverSeting. | 9.8 |
| 2022-05-02 | CVE-2022-28571 | OS Command Injection vulnerability in Dlink Dir-882 Firmware 1.30B06 D-link 882 DIR882A1_FW130B06 was discovered to contain a command injection vulnerability in`/usr/bin/cli. | 9.8 |
| 2022-04-27 | CVE-2021-46441 | OS Command Injection vulnerability in Dlink Dir-825 Firmware In the "webupg" binary of D-Link DIR-825 G1, because of the lack of parameter verification, attackers can use "cmd" parameters to execute arbitrary system commands after obtaining authorization. | 8.8 |
| 2022-04-27 | CVE-2021-46442 | Unspecified vulnerability in Dlink Dir-825 Firmware In the "webupg" binary of D-Link DIR-825 G1, attackers can bypass authentication through parameters "autoupgrade.asp", and perform functions such as downloading configuration files and updating firmware without authorization. | 9.8 |
| 2022-04-11 | CVE-2022-1262 | OS Command Injection vulnerability in Dlink products A command injection vulnerability in the protest binary allows an attacker with access to the remote command line interface to execute arbitrary commands as root. | 7.8 |
| 2022-04-10 | CVE-2022-27286 | Out-of-bounds Write vulnerability in Dlink Dir-619 AX Firmware 1.00 D-Link DIR-619 Ax v1.00 was discovered to contain a stack overflow in the function formSetWanNonLogin. | 7.5 |
| 2022-04-10 | CVE-2022-27287 | Out-of-bounds Write vulnerability in Dlink Dir-619 AX Firmware 1.00 D-Link DIR-619 Ax v1.00 was discovered to contain a stack overflow in the function formSetWanPPPoE. | 7.5 |