Vulnerabilities > Dlink

DATE CVE VULNERABILITY TITLE RISK
2017-01-30 CVE-2016-10183 Path Traversal vulnerability in Dlink Dwr-932B Firmware 02.02Eu
An issue was discovered on the D-Link DWR-932B router.
network
low complexity
dlink CWE-22
7.5
7.5
2017-01-30 CVE-2016-10182 Command Injection vulnerability in Dlink Dwr-932B Firmware 02.02Eu
An issue was discovered on the D-Link DWR-932B router.
network
low complexity
dlink CWE-77
critical
 9.8
9.8
2017-01-30 CVE-2016-10181 Information Exposure vulnerability in Dlink Dwr-932B Firmware 02.02Eu
An issue was discovered on the D-Link DWR-932B router.
network
low complexity
dlink CWE-200
7.5
7.5
2017-01-30 CVE-2016-10180 Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) vulnerability in Dlink Dwr-932B Firmware 02.02Eu
An issue was discovered on the D-Link DWR-932B router.
network
low complexity
dlink CWE-335
7.5
7.5
2017-01-30 CVE-2016-10179 Use of Hard-coded Credentials vulnerability in Dlink Dwr-932B Firmware 02.02Eu
An issue was discovered on the D-Link DWR-932B router.
network
low complexity
dlink CWE-798
7.5
7.5
2017-01-30 CVE-2016-10178 7PK - Security Features vulnerability in Dlink Dwr-932B Firmware 02.02Eu
An issue was discovered on the D-Link DWR-932B router.
network
low complexity
dlink CWE-254
critical
 9.8
9.8
2017-01-30 CVE-2016-10177 Use of Hard-coded Credentials vulnerability in Dlink Dwr-932B Firmware 02.02Eu
An issue was discovered on the D-Link DWR-932B router.
network
low complexity
dlink CWE-798
critical
 9.8
9.8
2017-01-09 CVE-2016-10125 Use of Hard-coded Credentials vulnerability in Dlink Dgs-1100 Firmware 1.01.018
D-Link DGS-1100 devices with Rev.B firmware 1.01.018 have a hardcoded SSL private key, which allows man-in-the-middle attackers to spoof devices by hijacking an HTTPS session.
network
high complexity
dlink CWE-798
8.1
8.1
2016-08-25 CVE-2016-5681 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
Stack-based buffer overflow in dws/api/Login on D-Link DIR-850L B1 2.07 before 2.07WWB05, DIR-817 Ax, DIR-818LW Bx before 2.05b03beta03, DIR-822 C1 3.01 before 3.01WWb02, DIR-823 A1 1.00 before 1.00WWb05, DIR-895L A1 1.11 before 1.11WWb04, DIR-890L A1 1.09 before 1.09b14, DIR-885L A1 1.11 before 1.11WWb07, DIR-880L A1 1.07 before 1.07WWb08, DIR-868L B1 2.03 before 2.03WWb01, and DIR-868L C1 3.00 before 3.00WWb01 devices allows remote attackers to execute arbitrary code via a long session cookie.
network
low complexity
dlink d-link CWE-119
critical
 9.8
9.8
2015-05-01 CVE-2014-8361 The miniigd SOAP service in Realtek SDK allows remote attackers to execute arbitrary code via a crafted NewInternalClient request, as exploited in the wild through 2023.
network
low complexity
dlink realtek aterm
critical
 9.8
9.8