Vulnerabilities > Dlink > Critical

DATE CVE VULNERABILITY TITLE RISK
2022-05-10 CVE-2022-29324 Out-of-bounds Write vulnerability in Dlink Dir-816 Firmware 1.10Cnb04
D-Link DIR-816 A2_v1.10CNB04 was discovered to contain a stack overflow via the proto parameter in /goform/form2IPQoSTcAdd.
network
low complexity
dlink CWE-787
critical
 9.8
9.8
2022-05-10 CVE-2022-29325 Out-of-bounds Write vulnerability in Dlink Dir-816 Firmware 1.10Cnb04
D-Link DIR-816 A2_v1.10CNB04 was discovered to contain a stack overflow via the addurlfilter parameter in /goform/websURLFilter.
network
low complexity
dlink CWE-787
critical
 9.8
9.8
2022-05-10 CVE-2022-29326 Out-of-bounds Write vulnerability in Dlink Dir-816 Firmware 1.10Cnb04
D-Link DIR-816 A2_v1.10CNB04 was discovered to contain a stack overflow via the addhostfilter parameter in /goform/websHostFilter.
network
low complexity
dlink CWE-787
critical
 9.8
9.8
2022-05-10 CVE-2022-29327 Out-of-bounds Write vulnerability in Dlink Dir-816 Firmware 1.10Cnb04
D-Link DIR-816 A2_v1.10CNB04 was discovered to contain a stack overflow via the urladd parameter in /goform/websURLFilterAddDel.
network
low complexity
dlink CWE-787
critical
 9.8
9.8
2022-05-10 CVE-2022-29328 Out-of-bounds Write vulnerability in Dlink Dap-1330 Firmware 1.00.B21
D-Link DAP-1330_OSS-firmware_1.00b21 was discovered to contain a stack overflow via the function checkvalidupgrade.
network
low complexity
dlink CWE-787
critical
 9.8
9.8
2022-05-10 CVE-2022-29329 Out-of-bounds Write vulnerability in Dlink Dap-1330 Firmware 1.00.B21
D-Link DAP-1330_OSS-firmware_1.00b21 was discovered to contain a heap overflow via the devicename parameter in /goform/setDeviceSettings.
network
low complexity
dlink CWE-787
critical
 9.8
9.8
2022-05-02 CVE-2022-28573 OS Command Injection vulnerability in Dlink Dir-823 PRO Firmware 1.0.2
D-Link DIR-823-Pro v1.0.2 was discovered to contain a command injection vulnerability in the function SetNTPserverSeting.
network
low complexity
dlink CWE-78
critical
 9.8
9.8
2022-05-02 CVE-2022-28571 OS Command Injection vulnerability in Dlink Dir-882 Firmware 1.30B06
D-link 882 DIR882A1_FW130B06 was discovered to contain a command injection vulnerability in`/usr/bin/cli.
network
low complexity
dlink CWE-78
critical
 9.8
9.8
2022-04-27 CVE-2021-46442 Unspecified vulnerability in Dlink Dir-825 Firmware
In the "webupg" binary of D-Link DIR-825 G1, attackers can bypass authentication through parameters "autoupgrade.asp", and perform functions such as downloading configuration files and updating firmware without authorization.
network
low complexity
dlink
critical
 9.8
9.8
2022-04-07 CVE-2021-43474 Command Injection vulnerability in Dlink Dir-823G Firmware 1.02B05
An Access Control vulnerability exists in D-Link DIR-823G REVA1 1.02B05 (Lastest) via any parameter in the HNAP1 function
network
low complexity
dlink CWE-77
critical
 9.8
9.8