Vulnerabilities > Dlink > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-10-11 | CVE-2019-17506 | Missing Authentication for Critical Function vulnerability in Dlink Dir-817Lw A1 Firmware and Dir-868L B1 Firmware There are some web interfaces without authentication requirements on D-Link DIR-868L B1-2.03 and DIR-817LW A1-1.04 routers. | 9.8 |
| 2019-09-27 | CVE-2019-16920 | OS Command Injection vulnerability in Dlink products Unauthenticated remote code execution occurs in D-Link products such as DIR-655C, DIR-866L, DIR-652, and DHP-1565. | 9.8 |
| 2019-09-16 | CVE-2019-16057 | OS Command Injection vulnerability in Dlink Dns-320 Firmware The login_mgr.cgi script in D-Link DNS-320 through 2.05.B10 is vulnerable to remote command injection. | 9.8 |
| 2019-09-09 | CVE-2019-16190 | Improper Authentication vulnerability in Dlink products SharePort Web Access on D-Link DIR-868L REVB through 2.03, DIR-885L REVA through 1.20, and DIR-895L REVA through 1.21 devices allows Authentication Bypass, as demonstrated by a direct request to folder_view.php or category_view.php. | 9.8 |
| 2019-09-06 | CVE-2019-10892 | Out-of-bounds Write vulnerability in Dlink Dir-806 Firmware 1.0 An issue was discovered in D-Link DIR-806 devices. | 9.8 |
| 2019-09-06 | CVE-2019-10891 | OS Command Injection vulnerability in Dlink Dir-806 Firmware An issue was discovered in D-Link DIR-806 devices. | 9.8 |
| 2019-08-08 | CVE-2019-13101 | Missing Authentication for Critical Function vulnerability in Dlink Dir-600M Firmware An issue was discovered on D-Link DIR-600M 3.02, 3.03, 3.04, and 3.06 devices. | 9.8 |
| 2019-07-23 | CVE-2019-1010155 | Unspecified vulnerability in Dlink Dsl-2750U Firmware 1.11 D-Link DSL-2750U 1.11 is affected by: Authentication Bypass. | 9.1 |
| 2019-07-11 | CVE-2019-13561 | OS Command Injection vulnerability in Dlink Dir-655 Firmware 3.02B05 D-Link DIR-655 C devices before 3.02B05 BETA03 allow remote attackers to execute arbitrary commands via shell metacharacters in the online_firmware_check.cgi check_fw_url parameter. | 9.8 |
| 2019-07-11 | CVE-2019-13560 | Credentials Management vulnerability in Dlink Dir-655 Firmware 3.02B05 D-Link DIR-655 C devices before 3.02B05 BETA03 allow remote attackers to force a blank password via the apply_sec.cgi setup_wizard parameter. | 9.8 |