Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact

d-link dir-816 a2 firmware 1.10b05 vulnerabilities and exploits

(subscribe to this query)
9.8
CVSSv3

CVE-2018-11013

Stack-based buffer overflow in the websRedirect function in GoAhead on D-Link DIR-816 A2 (CN) routers with firmware version 1.10B05 allows unauthenticated remote malicious users to execute arbitrary code via a request with a long HTTP Host header.
D-link Dir-816 A2 Firmware 1.10b05
9.8
CVSSv3

CVE-2018-20305

D-Link DIR-816 A2 1.10 B05 devices allow arbitrary remote code execution without authentication via the newpass parameter. In the /goform/form2userconfig.cgi handler function, a long password may lead to a stack-based buffer overflow and overwrite a return address.
D-link Dir-816 A2 Firmware 1.10b05
9.8
CVSSv3

CVE-2023-39637

D-Link DIR-816 A2 1.10 B05 exists to contain a command injection vulnerability via the component /goform/Diagnosis.
Dlink Dir-816 Firmware 1.10b05
9.8
CVSSv3

CVE-2022-42998

D-Link DIR-816 A2 1.10 B05 exists to contain a stack overflow via the srcip parameter at /goform/form2IPQoSTcAdd.
Dlink Dir-816 Firmware 1.10b05
9.8
CVSSv3

CVE-2022-43000

D-Link DIR-816 A2 1.10 B05 exists to contain a stack overflow via the wizardstep4_pskpwd parameter at /goform/form2WizardStep4.
Dlink Dir-816 Firmware 1.10b05
9.8
CVSSv3

CVE-2022-43002

D-Link DIR-816 A2 1.10 B05 exists to contain a stack overflow via the wizardstep54_pskpwd parameter at /goform/form2WizardStep54.
Dlink Dir-816 Firmware 1.10b05
9.8
CVSSv3

CVE-2022-43001

D-Link DIR-816 A2 1.10 B05 exists to contain a stack overflow via the pskValue parameter in the setSecurity function.
Dlink Dir-816 Firmware 1.10b05
9.8
CVSSv3

CVE-2022-43003

D-Link DIR-816 A2 1.10 B05 exists to contain a stack overflow via the pskValue parameter in the setRepeaterSecurity function.
Dlink Dir-816 Firmware 1.10b05
7.5
CVSSv3

CVE-2022-42999

D-Link DIR-816 A2 1.10 B05 exists to contain multiple command injection vulnerabilities via the admuser and admpass parameters at /goform/setSysAdm.
Dlink Dir-816 Firmware 1.10b05
9.8
CVSSv3

CVE-2021-27113

An issue exists in D-Link DIR-816 A2 1.10 B05 devices. An HTTP request parameter is used in command string construction within the handler function of the /goform/addRouting route. This could lead to Command Injection via Shell Metacharacters.
Dlink Dir-816 Firmware 1.10b05
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusionIMAPCVE-2024-36103CVE-2024-28995CVE-2024-37325CVE-2024-30078CVE-2024-30082SQL injectionCVE-2024-30052
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook