Vulnerabilities > Dlink > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-07-08 | CVE-2024-39202 | Unspecified vulnerability in Dlink Dir-823X Ax3000 Firmware 240126 D-Link DIR-823X firmware - 240126 was discovered to contain a remote command execution (RCE) vulnerability via the dhcpd_startip parameter at /goform/set_lan_settings. | 8.8 |
| 2024-07-05 | CVE-2024-6525 | Deserialization of Untrusted Data vulnerability in Dlink Dar-7000 Firmware 100A53Dbr/20151231/31R02B1413C ** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in D-Link DAR-7000 up to 20230922. | 8.8 |
| 2023-12-07 | CVE-2023-6580 | Deserialization of Untrusted Data vulnerability in Dlink Dir-846 Firmware 100A53Dbr A vulnerability, which was classified as critical, was found in D-Link DIR-846 FW100A53DBR. | 8.8 |
| 2023-10-11 | CVE-2023-43960 | Improper Privilege Management vulnerability in Dlink Dph-400Se Firmware 2.2.15.8 An issue in DLINK DPH-400SE FRU 2.2.15.8 allows a remote attacker to escalate privileges via the User Modify function in the Maintenance/Access function component. | 8.8 |
| 2023-10-10 | CVE-2023-45208 | Command Injection vulnerability in Dlink Dap-1860 Firmware 1.00/1.01B0501/1.01B94 A command injection in the parsing_xml_stasurvey function inside libcgifunc.so of the D-Link DAP-X1860 repeater 1.00 through 1.01b05-01 allows attackers (within range of the repeater) to run shell commands as root during the setup process of the repeater, via a crafted SSID. | 8.8 |
| 2023-10-10 | CVE-2023-44959 | Command Injection vulnerability in Dlink Dsl-3782 Firmware 1.01/1.03 An issue found in D-Link DSL-3782 v.1.03 and before allows remote authenticated users to execute arbitrary code as root via the Router IP Address fields of the network settings page. | 8.8 |
| 2023-10-05 | CVE-2023-43284 | Unspecified vulnerability in Dlink Dir-846 Firmware 100A53Dbr D-Link Wireless MU-MIMO Gigabit AC1200 Router DIR-846 100A53DBR-Retail devices allow an authenticated remote attacker to execute arbitrary code via an unspecified manipulation of the QoS POST parameter. | 8.8 |
| 2023-10-05 | CVE-2023-44828 | Classic Buffer Overflow vulnerability in Dlink Dir-823G Firmware 1.0.2B05 D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow via the CurrentPassword parameter in the CheckPasswdSettings function. | 7.5 |
| 2023-10-05 | CVE-2023-44829 | Classic Buffer Overflow vulnerability in Dlink Dir-823G Firmware 1.0.2B05 D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow via the AdminPassword parameter in the SetDeviceSettings function. | 7.5 |
| 2023-10-05 | CVE-2023-44830 | Classic Buffer Overflow vulnerability in Dlink Dir-823G Firmware 1.0.2B05 D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow via the EndTime parameter in the SetParentsControlInfo function. | 7.5 |