Vulnerabilities > Dlink > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-08-15 | CVE-2022-36526 | Unspecified vulnerability in Dlink Go-Rt-Ac750 Firmware 101B03/200B02 D-Link GO-RT-AC750 GORTAC750_revA_v101b03 & GO-RT-AC750_revB_FWv200b02 is vulnerable to Authentication Bypass via function phpcgi_main in cgibin. | 7.5 |
| 2022-08-03 | CVE-2022-34973 | Classic Buffer Overflow vulnerability in Dlink Dir820La1 Firmware 106B02 D-Link DIR820LA1_FW106B02 was discovered to contain a buffer overflow via the nextPage parameter at ping.ccp. | 7.5 |
| 2022-07-29 | CVE-2022-34527 | OS Command Injection vulnerability in Dlink Dsl-3782 Firmware 1.01/1.03 D-Link DSL-3782 v1.03 and below was discovered to contain a command injection vulnerability via the function byte_4C0160. | 8.8 |
| 2022-07-29 | CVE-2022-34528 | Out-of-bounds Write vulnerability in Dlink Dsl-3782 Firmware 1.01/1.03 D-Link DSL-3782 v1.03 and below was discovered to contain a stack overflow via the function getAttrValue. | 8.8 |
| 2022-06-16 | CVE-2018-18907 | Improper Authentication vulnerability in Dlink Dir-850L Firmare An issue was discovered on D-Link DIR-850L 1.21WW devices. | 7.5 |
| 2022-06-03 | CVE-2022-29778 | Unspecified vulnerability in Dlink Dir-890L Firmware D-Link DIR-890L 1.20b01 allows attackers to execute arbitrary code due to the hardcoded option Wake-On-Lan for the parameter 'descriptor' at SetVirtualServerSettings.php | 8.8 |
| 2022-05-18 | CVE-2022-28955 | Improper Authentication vulnerability in Dlink Dir-816L Firmware 206B01 An access control issue in D-Link DIR816L_FW206b01 allows unauthenticated attackers to access folders folder_view.php and category_view.php. | 7.5 |
| 2022-04-27 | CVE-2021-46441 | OS Command Injection vulnerability in Dlink Dir-825 Firmware In the "webupg" binary of D-Link DIR-825 G1, because of the lack of parameter verification, attackers can use "cmd" parameters to execute arbitrary system commands after obtaining authorization. | 8.8 |
| 2022-04-11 | CVE-2022-1262 | OS Command Injection vulnerability in Dlink products A command injection vulnerability in the protest binary allows an attacker with access to the remote command line interface to execute arbitrary commands as root. | 7.8 |
| 2022-04-10 | CVE-2022-27286 | Out-of-bounds Write vulnerability in Dlink Dir-619 AX Firmware 1.00 D-Link DIR-619 Ax v1.00 was discovered to contain a stack overflow in the function formSetWanNonLogin. | 7.5 |