Vulnerabilities > Dlink > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-04-09 CVE-2023-27719 Out-of-bounds Write vulnerability in Dlink Dir878 Firmware 1.30B08
D-Link DIR878 1.30B08 was discovered to contain a stack overflow in the sub_478360 function.
network
low complexity
dlink CWE-787
critical
 9.8
9.8
2023-04-09 CVE-2023-27720 Out-of-bounds Write vulnerability in Dlink Dir-878 Firmware 1.30B08
D-Link DIR878 1.30B08 was discovered to contain a stack overflow in the sub_48d630 function.
network
low complexity
dlink CWE-787
critical
 9.8
9.8
2023-04-07 CVE-2023-24797 Out-of-bounds Write vulnerability in Dlink Dir-882 A1 Firmware 110B02
D-Link DIR882 DIR882A1_FW110B02 was discovered to contain a stack overflow in the sub_48AC20 function.
network
low complexity
dlink CWE-787
critical
 9.8
9.8
2023-04-07 CVE-2023-24798 Out-of-bounds Write vulnerability in Dlink Dir-878 Firmware 1.20B05
D-Link DIR878 DIR_878_FW120B05 was discovered to contain a stack overflow in the sub_475FB0 function.
network
low complexity
dlink CWE-787
critical
 9.8
9.8
2023-04-07 CVE-2023-24799 Out-of-bounds Write vulnerability in Dlink Dir-878 Firmware 1.20B05
D-Link DIR878 DIR_878_FW120B05 was discovered to contain a stack overflow in the sub_48AF78 function.
network
low complexity
dlink CWE-787
critical
 9.8
9.8
2023-04-07 CVE-2023-24800 Out-of-bounds Write vulnerability in Dlink Dir-878 Firmware 1.20B05
D-Link DIR878 DIR_878_FW120B05 was discovered to contain a stack overflow in the sub_495220 function.
network
low complexity
dlink CWE-787
critical
 9.8
9.8
2023-04-01 CVE-2023-26822 Command Injection vulnerability in Dlink Go-Rt-Ac750 Firmware Revav101B03
D-Link Go-RT-AC750 revA_v101b03 was discovered to contain a command injection vulnerability via the service parameter at soapcgi.main.
network
low complexity
dlink CWE-77
critical
 9.8
9.8
2023-03-16 CVE-2023-25280 OS Command Injection vulnerability in Dlink Dir820La1 Firmware 105B03
OS Command injection vulnerability in D-Link DIR820LA1_FW105B03 allows attackers to escalate privileges to root via a crafted payload with the ping_addr parameter to ping.ccp.
network
low complexity
dlink CWE-78
critical
 9.8
9.8
2023-03-13 CVE-2023-25279 OS Command Injection vulnerability in Dlink Dir-820L Firmware 105B03
OS Command injection vulnerability in D-Link DIR820LA1_FW105B03 allows attackers to escalate privileges to root via a crafted payload.
network
low complexity
dlink CWE-78
critical
 9.8
9.8
2023-03-13 CVE-2023-24762 OS Command Injection vulnerability in Dlink Dir-867 Firmware 1.30B07
OS Command injection vulnerability in D-Link DIR-867 DIR_867_FW1.30B07 allows attackers to execute arbitrary commands via a crafted LocalIPAddress parameter for the SetVirtualServerSettings to HNAP1.
network
low complexity
dlink CWE-78
critical
 9.8
9.8