Vulnerabilities > Dlink > Critical

DATE CVE VULNERABILITY TITLE RISK
2024-08-15 CVE-2024-7831 Classic Buffer Overflow vulnerability in Dlink products
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20240814 and classified as critical.
network
low complexity
dlink CWE-120
critical
 9.8
9.8
2024-08-06 CVE-2024-41616 Use of Hard-coded Credentials vulnerability in Dlink Dir-300 Firmware 1.06B05Ww
D-Link DIR-300 REVA FIRMWARE v1.06B05_WW contains hardcoded credentials in the Telnet service.
network
low complexity
dlink CWE-798
critical
 9.8
9.8
2024-07-21 CVE-2024-38437 Missing Authentication for Critical Function vulnerability in Dlink Dsl-225 Firmware Bz1.00.16
D-Link - CWE-288:Authentication Bypass Using an Alternate Path or Channel
network
low complexity
dlink CWE-306
critical
 9.8
9.8
2024-07-21 CVE-2024-38438 Unspecified vulnerability in Dlink Dsl-225 Firmware Gem1.00.02
D-Link - CWE-294: Authentication Bypass by Capture-replay
network
low complexity
dlink
critical
 9.8
9.8
2024-04-04 CVE-2024-3272 Unspecified vulnerability in Dlink products
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability, which was classified as very critical, has been found in D-Link DNS-320L, DNS-325, DNS-327L and DNS-340L up to 20240403.
network
low complexity
dlink
critical
 9.8
9.8
2024-04-04 CVE-2024-3273 Unspecified vulnerability in Dlink products
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability, which was classified as critical, was found in D-Link DNS-320L, DNS-325, DNS-327L and DNS-340L up to 20240403.
network
low complexity
dlink
critical
 9.8
9.8
2024-02-08 CVE-2024-24321 Command Injection vulnerability in Dlink Dir-816 Firmware 1.10Cnb05
An issue in Dlink DIR-816A2 v.1.10CNB05 allows a remote attacker to execute arbitrary code via the wizardstep4_ssid_2 parameter in the sub_42DA54 function.
network
low complexity
dlink CWE-77
critical
 9.8
9.8
2024-02-06 CVE-2024-22852 Out-of-bounds Write vulnerability in Dlink Go-Rt-Ac750 Firmware 101B03
D-Link Go-RT-AC750 GORTAC750_A1_FW_v101b03 contains a stack-based buffer overflow via the function genacgi_main.
network
low complexity
dlink CWE-787
critical
 9.8
9.8
2024-02-06 CVE-2024-22853 Use of Hard-coded Credentials vulnerability in Dlink Go-Rt-Ac750 Firmware 101B03
D-LINK Go-RT-AC750 GORTAC750_A1_FW_v101b03 has a hardcoded password for the Alphanetworks account, which allows remote attackers to obtain root access via a telnet session.
network
low complexity
dlink CWE-798
critical
 9.8
9.8
2024-01-26 CVE-2024-0921 Unspecified vulnerability in Dlink Dir-816 A2 Firmware 1.10Cnb04
A vulnerability has been found in D-Link DIR-816 A2 1.10CNB04 and classified as critical.
network
low complexity
dlink
critical
 9.8
9.8