Vulnerabilities > Dlink > High

DATE CVE VULNERABILITY TITLE RISK
2021-03-11 CVE-2021-28143 OS Command Injection vulnerability in Dlink Dir-841 Firmware 3.03/3.04
/jsonrpc on D-Link DIR-841 3.03 and 3.04 devices allows authenticated command injection via ping, ping6, or traceroute (under System Tools).
low complexity
dlink CWE-78
8.0
2021-03-11 CVE-2021-28144 OS Command Injection vulnerability in Dlink Dir-3060 Firmware
prog.cgi on D-Link DIR-3060 devices before 1.11b04 HF2 allows remote authenticated users to inject arbitrary commands in an admin or root context because SetVirtualServerSettings calls CheckArpTables, which calls popen unsafely.
network
low complexity
dlink CWE-78
8.8
2021-02-12 CVE-2020-27865 Unspecified vulnerability in Dlink Dap-1860 Firmware
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1860 firmware version 1.04B03 WiFi extenders.
low complexity
dlink
8.8
2021-02-12 CVE-2020-27864 Unspecified vulnerability in Dlink Dap-1860 Firmware
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1860 firmware version 1.04B03 WiFi extenders.
low complexity
dlink
8.8
2021-02-12 CVE-2020-27862 Unspecified vulnerability in Dlink Dsl-2888A Firmware and Dva-2800 Firmware
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DVA-2800 and DSL-2888A routers.
low complexity
dlink
8.8
2021-01-19 CVE-2021-3182 Out-of-bounds Write vulnerability in Dlink Dcs-5220 Firmware
D-Link DCS-5220 devices have a buffer overflow.
low complexity
dlink CWE-787
8.0
2021-01-08 CVE-2020-24577 Cleartext Storage of Sensitive Information vulnerability in Dlink Dsl-2888A Firmware 2.30Au
An issue was discovered on D-Link DSL-2888A devices with firmware prior to AU_2.31_V1.1.47ae55.
network
low complexity
dlink CWE-312
7.5
2020-12-22 CVE-2020-24581 OS Command Injection vulnerability in Dlink Dsl2888A Firmware
An issue was discovered on D-Link DSL-2888A devices with firmware prior to AU_2.31_V1.1.47ae55.
low complexity
dlink CWE-78
8.0
2020-12-22 CVE-2020-24580 Missing Authentication for Critical Function vulnerability in Dlink Dsl2888A Firmware
An issue was discovered on D-Link DSL-2888A devices with firmware prior to AU_2.31_V1.1.47ae55.
high complexity
dlink CWE-306
7.5
2020-12-22 CVE-2020-24579 Improper Authentication vulnerability in Dlink Dsl2888A Firmware
An issue was discovered on D-Link DSL-2888A devices with firmware prior to AU_2.31_V1.1.47ae55.
low complexity
dlink CWE-287
8.8