Vulnerabilities > Dlink > High

DATE CVE VULNERABILITY TITLE RISK
2024-09-06 CVE-2024-44408 Missing Authorization vulnerability in Dlink Dir-823G Firmware 1.0.2B0520181207
D-Link DIR-823G v1.0.2B05_20181207 is vulnerable to Information Disclosure.
network
low complexity
dlink CWE-862
7.5
7.5
2024-08-27 CVE-2024-44340 OS Command Injection vulnerability in Dlink Dir-846W Firmware Fw100A43
D-Link DIR-846W A1 FW100A43 was discovered to contain a remote command execution (RCE) vulnerability via keys smartqos_express_devices and smartqos_normal_devices in SetSmartQoSSettings.
network
low complexity
dlink CWE-78
8.8
8.8
2024-08-15 CVE-2024-7832 Classic Buffer Overflow vulnerability in Dlink products
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20240814 and classified as critical.
network
low complexity
dlink CWE-120
8.8
8.8
2024-08-03 CVE-2024-7436 Command Injection vulnerability in Dlink Di-8100 Firmware 16.07
A vulnerability, which was classified as critical, has been found in D-Link DI-8100 16.07.
network
low complexity
dlink CWE-77
8.8
8.8
2024-07-08 CVE-2024-39202 Unspecified vulnerability in Dlink Dir-823X Ax3000 Firmware 240126
D-Link DIR-823X firmware - 240126 was discovered to contain a remote command execution (RCE) vulnerability via the dhcpd_startip parameter at /goform/set_lan_settings.
network
low complexity
dlink
8.8
8.8
2024-07-05 CVE-2024-6525 Unspecified vulnerability in Dlink Dar-7000 Firmware
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in D-Link DAR-7000 up to 20230922.
network
low complexity
dlink
8.8
8.8
2024-05-03 CVE-2023-51613 Out-of-bounds Write vulnerability in Dlink Dir-X3260 Firmware
D-Link DIR-X3260 prog.cgi SetDynamicDNSSettings Stack-Based Buffer Overflow Remote Code Execution Vulnerability.
low complexity
dlink CWE-787
8.0
8.0
2024-05-03 CVE-2023-51624 Out-of-bounds Write vulnerability in Dlink Dcs-8300Lhv2 Firmware
D-Link DCS-8300LHV2 RTSP ValidateAuthorizationHeader Nonce Stack-Based Buffer Overflow Remote Code Execution Vulnerability.
low complexity
dlink CWE-787
8.8
8.8
2024-05-03 CVE-2023-51625 OS Command Injection vulnerability in Dlink Dcs-8300Lhv2 Firmware
D-Link DCS-8300LHV2 ONVIF SetSystemDateAndTime Command Injection Remote Code Execution Vulnerability.
low complexity
dlink CWE-78
8.0
8.0
2024-05-03 CVE-2023-51626 Out-of-bounds Write vulnerability in Dlink Dcs-8300Lhv2 Firmware
D-Link DCS-8300LHV2 RTSP ValidateAuthorizationHeader Username Stack-Based Buffer Overflow Remote Code Execution Vulnerability.
low complexity
dlink CWE-787
8.8
8.8