Dlink CVEs and Security Vulnerabilities

Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (1609 CVEs found)

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2022-29778	2 D-link, Dlink	3 Dir-890l Firmware, Dir-890l, Dir-890l Firmware	2024-11-21	8.8 High
D-Link DIR-890L 1.20b01 allows attackers to execute arbitrary code due to the hardcoded option Wake-On-Lan for the parameter 'descriptor' at SetVirtualServerSettings.php
CVE-2022-29332	1 Dlink	2 Dir-825, Dir-825 Firmware	2024-11-21	6.5 Medium
D-LINK DIR-825 AC1200 R2 is vulnerable to Directory Traversal. An attacker could use the "../../../../" setting of the FTP server folder to set the router's root folder for FTP access. This allows you to access the entire router file system via the FTP server.
CVE-2022-29329	1 Dlink	2 Dap-1330, Dap-1330 Firmware	2024-11-21	9.8 Critical
D-Link DAP-1330_OSS-firmware_1.00b21 was discovered to contain a heap overflow via the devicename parameter in /goform/setDeviceSettings.
CVE-2022-29328	1 Dlink	2 Dap-1330, Dap-1330 Firmware	2024-11-21	9.8 Critical
D-Link DAP-1330_OSS-firmware_1.00b21 was discovered to contain a stack overflow via the function checkvalidupgrade.
CVE-2022-29327	1 Dlink	2 Dir-816, Dir-816 Firmware	2024-11-21	9.8 Critical
D-Link DIR-816 A2_v1.10CNB04 was discovered to contain a stack overflow via the urladd parameter in /goform/websURLFilterAddDel.
CVE-2022-29326	1 Dlink	2 Dir-816, Dir-816 Firmware	2024-11-21	9.8 Critical
D-Link DIR-816 A2_v1.10CNB04 was discovered to contain a stack overflow via the addhostfilter parameter in /goform/websHostFilter.
CVE-2022-29325	1 Dlink	2 Dir-816, Dir-816 Firmware	2024-11-21	9.8 Critical
D-Link DIR-816 A2_v1.10CNB04 was discovered to contain a stack overflow via the addurlfilter parameter in /goform/websURLFilter.
CVE-2022-29324	1 Dlink	2 Dir-816, Dir-816 Firmware	2024-11-21	9.8 Critical
D-Link DIR-816 A2_v1.10CNB04 was discovered to contain a stack overflow via the proto parameter in /goform/form2IPQoSTcAdd.
CVE-2022-29323	1 Dlink	2 Dir-816, Dir-816 Firmware	2024-11-21	9.8 Critical
D-Link DIR-816 A2_v1.10CNB04 was discovered to contain a stack overflow via the MAC parameter in /goform/editassignment.
CVE-2022-29322	1 Dlink	2 Dir-816, Dir-816 Firmware	2024-11-21	9.8 Critical
D-Link DIR-816 A2_v1.10CNB04 was discovered to contain a stack overflow via the IPADDR and nvmacaddr parameters in /goform/form2Dhcpip.
CVE-2022-29321	1 Dlink	2 Dir-816, Dir-816 Firmware	2024-11-21	9.8 Critical
D-Link DIR-816 A2_v1.10CNB04 was discovered to contain a stack overflow via the lanip parameter in /goform/setNetworkLan.
CVE-2022-28956	1 Dlink	2 Dir-816l, Dir-816l Firmware	2024-11-21	9.8 Critical
An issue in the getcfg.php component of D-Link DIR816L_FW206b01 allows attackers to access the device via a crafted payload.
CVE-2022-28955	1 Dlink	2 Dir-816l, Dir-816l Firmware	2024-11-21	7.5 High
An access control issue in D-Link DIR816L_FW206b01 allows unauthenticated attackers to access folders folder_view.php and category_view.php.
CVE-2022-28932	1 Dlink	2 Dsl-g2452dg, Dsl-g2452dg Firmware	2024-11-21	9.8 Critical
D-Link DSL-G2452DG HW:T1\\tFW:ME_2.00 was discovered to contain insecure permissions.
CVE-2022-28915	1 Dlink	2 Dir-816, Dir-816 Firmware	2024-11-21	9.8 Critical
D-Link DIR-816 A2_v1.10CNB04 was discovered to contain a command injection vulnerability via the admuser and admpass parameters in /goform/setSysAdm.
CVE-2022-28901	1 Dlink	2 Dir-882, Dir-882 Firmware	2024-11-21	9.8 Critical
A command injection vulnerability in the component /SetTriggerLEDBlink/Blink of D-Link DIR882 DIR882A1_FW130B06 allows attackers to escalate privileges to root via a crafted payload.
CVE-2022-28896	1 Dlink	2 Dir-882, Dir-882 Firmware	2024-11-21	9.8 Critical
A command injection vulnerability in the component /setnetworksettings/SubnetMask of D-Link DIR882 DIR882A1_FW130B06 allows attackers to escalate privileges to root via a crafted payload.
CVE-2022-28895	1 Dlink	2 Dir-882, Dir-882 Firmware	2024-11-21	9.8 Critical
A command injection vulnerability in the component /setnetworksettings/IPAddress of D-Link DIR882 DIR882A1_FW130B06 allows attackers to escalate privileges to root via a crafted payload.
CVE-2022-28573	1 Dlink	2 Dir-823 Pro, Dir-823 Pro Firmware	2024-11-21	9.8 Critical
D-Link DIR-823-Pro v1.0.2 was discovered to contain a command injection vulnerability in the function SetNTPserverSeting. This vulnerability allows attackers to execute arbitrary commands via the system_time_timezone parameter.
CVE-2022-28571	1 Dlink	2 Dir-882, Dir-882 Firmware	2024-11-21	9.8 Critical
D-link 882 DIR882A1_FW130B06 was discovered to contain a command injection vulnerability in`/usr/bin/cli.

« first previous Page 55 of 81. next last »