Vulnerabilities > Dlink > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-03-11 | CVE-2021-28143 | OS Command Injection vulnerability in Dlink Dir-841 Firmware 3.03/3.04 /jsonrpc on D-Link DIR-841 3.03 and 3.04 devices allows authenticated command injection via ping, ping6, or traceroute (under System Tools). | 8.0 |
| 2021-03-11 | CVE-2021-28144 | OS Command Injection vulnerability in Dlink Dir-3060 Firmware prog.cgi on D-Link DIR-3060 devices before 1.11b04 HF2 allows remote authenticated users to inject arbitrary commands in an admin or root context because SetVirtualServerSettings calls CheckArpTables, which calls popen unsafely. | 8.8 |
| 2021-02-12 | CVE-2020-27865 | Unspecified vulnerability in Dlink Dap-1860 Firmware This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1860 firmware version 1.04B03 WiFi extenders. low complexity dlink | 8.8 |
| 2021-02-12 | CVE-2020-27864 | Unspecified vulnerability in Dlink Dap-1860 Firmware This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1860 firmware version 1.04B03 WiFi extenders. low complexity dlink | 8.8 |
| 2021-02-12 | CVE-2020-27862 | Unspecified vulnerability in Dlink Dsl-2888A Firmware and Dva-2800 Firmware This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DVA-2800 and DSL-2888A routers. low complexity dlink | 8.8 |
| 2021-01-19 | CVE-2021-3182 | Out-of-bounds Write vulnerability in Dlink Dcs-5220 Firmware D-Link DCS-5220 devices have a buffer overflow. | 8.0 |
| 2021-01-08 | CVE-2020-24577 | Cleartext Storage of Sensitive Information vulnerability in Dlink Dsl-2888A Firmware 2.30Au An issue was discovered on D-Link DSL-2888A devices with firmware prior to AU_2.31_V1.1.47ae55. | 7.5 |
| 2020-12-22 | CVE-2020-24581 | OS Command Injection vulnerability in Dlink Dsl2888A Firmware An issue was discovered on D-Link DSL-2888A devices with firmware prior to AU_2.31_V1.1.47ae55. | 8.0 |
| 2020-12-22 | CVE-2020-24580 | Missing Authentication for Critical Function vulnerability in Dlink Dsl2888A Firmware An issue was discovered on D-Link DSL-2888A devices with firmware prior to AU_2.31_V1.1.47ae55. | 7.5 |
| 2020-12-22 | CVE-2020-24579 | Improper Authentication vulnerability in Dlink Dsl2888A Firmware An issue was discovered on D-Link DSL-2888A devices with firmware prior to AU_2.31_V1.1.47ae55. | 8.8 |