Vulnerabilities > Dlink > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2021-09-27 | CVE-2021-41753 | Authentication Bypass by Spoofing vulnerability in Dlink Dir-X1560 Firmware and Dir-X6060 Firmware A denial-of-service attack in WPA2, and WPA3-SAE authentication methods in D-Link DIR-X1560, v1.04B04, and DIR-X6060, v1.11B04 allows a remote unauthenticated attacker to disconnect a wireless client via sending specific spoofed SAE authentication frames. | 7.8 |
2021-09-24 | CVE-2021-40655 | Incorrect Authorization vulnerability in Dlink Dir-605L Firmware 2.01Mt An informtion disclosure issue exists in D-LINK-DIR-605 B2 Firmware Version : 2.01MT. | 7.5 |
2021-09-24 | CVE-2021-41503 | Improper Authentication vulnerability in multiple products DCS-5000L v1.05 and DCS-932L v2.17 and older are affecged by Incorrect Acess Control. | 8.0 |
2021-09-24 | CVE-2021-41504 | Unspecified vulnerability in Dlink Dcs-5000L Firmware and Dcs-932L Firmware An Elevated Privileges issue exists in D-Link DCS-5000L v1.05 and DCS-932L v2.17 and older. low complexity dlink | 8.0 |
2021-09-23 | CVE-2021-21913 | Use of Hard-coded Credentials vulnerability in Dlink Dir-3040 Firmware 1.13B03 An information disclosure vulnerability exists in the WiFi Smart Mesh functionality of D-LINK DIR-3040 1.13B03. | 7.5 |
2021-08-24 | CVE-2021-39509 | Command Injection vulnerability in Dlink Dir-816 Firmware 1.10Cnb05R1B011D88210 An issue was discovered in D-Link DIR-816 DIR-816A2_FWv1.10CNB05_R1B011D88210 The HTTP request parameter is used in the handler function of /goform/form2userconfig.cgi route, which can construct the user name string to delete the user function. | 7.5 |
2021-08-24 | CVE-2021-39510 | Command Injection vulnerability in Dlink Dir-816 Firmware 101Cnb04 An issue was discovered in D-Link DIR816_A1_FW101CNB04 750m11ac wireless router, The HTTP request parameter is used in the handler function of /goform/form2userconfig.cgi route, which can construct the user name string to delete the user function. | 7.5 |
2021-08-16 | CVE-2021-3708 | OS Command Injection vulnerability in Dlink Dsl-2750U Firmware 1.11 D-Link router DSL-2750U with firmware vME1.16 or prior versions is vulnerable to OS command injection. | 7.8 |
2021-08-10 | CVE-2021-29294 | NULL Pointer Dereference vulnerability in Dlink Dsl-2740R Firmware Uk1.01 Null Pointer Dereference vulnerability exists in D-Link DSL-2740R UK_1.01, which could let a remove malicious user cause a denial of service via the send_hnap_unauthorized function. | 7.5 |
2021-08-10 | CVE-2021-29295 | NULL Pointer Dereference vulnerability in Dlink Dsp-W215 Firmware 1.10 Null Pointer Dereference vulnerability exists in D-Link DSP-W215 1.10, which could let a remote malicious user cause a denial of servie via usr/bin/lighttpd. | 7.5 |