Vulnerabilities > Dlink > High

DATE CVE VULNERABILITY TITLE RISK
2023-02-10 CVE-2023-24345 Out-of-bounds Write vulnerability in Dlink Dir-605L Firmware 2.13B01
D-Link N300 WI-FI Router DIR-605L v2.13B01 was discovered to contain a stack overflow via the curTime parameter at /goform/formSetWanDhcpplus.
network
low complexity
dlink CWE-787
8.8
8.8
2023-02-10 CVE-2023-24346 Out-of-bounds Write vulnerability in Dlink Dir-605L Firmware 2.13B01
D-Link N300 WI-FI Router DIR-605L v2.13B01 was discovered to contain a stack overflow via the wan_connected parameter at /goform/formEasySetupWizard3.
network
low complexity
dlink CWE-787
8.8
8.8
2023-02-10 CVE-2023-24347 Out-of-bounds Write vulnerability in Dlink Dir-605L Firmware 2.13B01
D-Link N300 WI-FI Router DIR-605L v2.13B01 was discovered to contain a stack overflow via the webpage parameter at /goform/formSetWanDhcpplus.
network
low complexity
dlink CWE-787
8.8
8.8
2023-02-02 CVE-2022-46552 OS Command Injection vulnerability in Dlink Dir-846 Firmware 100A53Dbr
D-Link DIR-846 Firmware FW100A53DBR was discovered to contain a remote command execution (RCE) vulnerability via the lan(0)_dhcps_staticlist parameter.
network
low complexity
dlink CWE-78
8.8
8.8
2023-01-26 CVE-2022-40717 Out-of-bounds Write vulnerability in Dlink Dir-2150 Firmware
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected D-Link DIR-2150 4.0.1 routers.
low complexity
dlink CWE-787
8.8
8.8
2023-01-26 CVE-2022-40718 Out-of-bounds Write vulnerability in Dlink Dir-2150 Firmware
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected D-Link DIR-2150 4.0.1 routers.
low complexity
dlink CWE-787
8.8
8.8
2023-01-26 CVE-2022-40719 OS Command Injection vulnerability in Dlink Dir-2150 Firmware
This vulnerability allows network-adjacent attackers to execute arbitrary commands on affected installations of D-Link DIR-2150 4.0.1 routers.
low complexity
dlink CWE-78
8.8
8.8
2023-01-26 CVE-2022-40720 OS Command Injection vulnerability in Dlink Dir-2150 Firmware
This vulnerability allows network-adjacent attackers to execute arbitrary commands on affected installations of D-Link DIR-2150 4.0.1 routers.
low complexity
dlink CWE-78
8.8
8.8
2023-01-26 CVE-2022-41140 Out-of-bounds Write vulnerability in Dlink products
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of multiple D-Link routers.
low complexity
dlink CWE-787
8.8
8.8
2022-12-23 CVE-2022-46560 Out-of-bounds Write vulnerability in Dlink Dir-882 A1 Firmware 1.30B06
D-Link DIR-882 DIR882A1_FW130B06, DIR-878 DIR_878_FW1.30B08 was discovered to contain a stack overflow via the Password parameter in the SetWan2Settings module.
network
low complexity
dlink CWE-787
7.2
7.2