Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
d-link dir-816 a2 firmware 1.10b05 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2018-11013
Stack-based buffer overflow in the websRedirect function in GoAhead on D-Link DIR-816 A2 (CN) routers with firmware version 1.10B05 allows unauthenticated remote malicious users to execute arbitrary code via a request with a long HTTP Host header.
D-link Dir-816 A2 Firmware 1.10b05
9.8
CVSSv3
CVE-2018-20305
D-Link DIR-816 A2 1.10 B05 devices allow arbitrary remote code execution without authentication via the newpass parameter. In the /goform/form2userconfig.cgi handler function, a long password may lead to a stack-based buffer overflow and overwrite a return address.
D-link Dir-816 A2 Firmware 1.10b05
9.8
CVSSv3
CVE-2023-39637
D-Link DIR-816 A2 1.10 B05 exists to contain a command injection vulnerability via the component /goform/Diagnosis.
Dlink Dir-816 Firmware 1.10b05
9.8
CVSSv3
CVE-2022-42998
D-Link DIR-816 A2 1.10 B05 exists to contain a stack overflow via the srcip parameter at /goform/form2IPQoSTcAdd.
Dlink Dir-816 Firmware 1.10b05
9.8
CVSSv3
CVE-2022-43000
D-Link DIR-816 A2 1.10 B05 exists to contain a stack overflow via the wizardstep4_pskpwd parameter at /goform/form2WizardStep4.
Dlink Dir-816 Firmware 1.10b05
9.8
CVSSv3
CVE-2022-43002
D-Link DIR-816 A2 1.10 B05 exists to contain a stack overflow via the wizardstep54_pskpwd parameter at /goform/form2WizardStep54.
Dlink Dir-816 Firmware 1.10b05
9.8
CVSSv3
CVE-2022-43001
D-Link DIR-816 A2 1.10 B05 exists to contain a stack overflow via the pskValue parameter in the setSecurity function.
Dlink Dir-816 Firmware 1.10b05
9.8
CVSSv3
CVE-2022-43003
D-Link DIR-816 A2 1.10 B05 exists to contain a stack overflow via the pskValue parameter in the setRepeaterSecurity function.
Dlink Dir-816 Firmware 1.10b05
7.5
CVSSv3
CVE-2022-42999
D-Link DIR-816 A2 1.10 B05 exists to contain multiple command injection vulnerabilities via the admuser and admpass parameters at /goform/setSysAdm.
Dlink Dir-816 Firmware 1.10b05
9.8
CVSSv3
CVE-2021-27113
An issue exists in D-Link DIR-816 A2 1.10 B05 devices. An HTTP request parameter is used in command string construction within the handler function of the /goform/addRouting route. This could lead to Command Injection via Shell Metacharacters.
Dlink Dir-816 Firmware 1.10b05
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »