Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dlink vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2019-7642
D-Link routers with the mydlink feature have some web interfaces without authentication requirements. An attacker can remotely obtain users' DNS query logs and login logs. Vulnerable targets include but are not limited to the latest firmware versions of DIR-817LW (A1-1.04), ...
Dlink Dir-817lw Firmware 1.04
Dlink Dir-816l Firmware 2.06
Dlink Dir-816 Firmware 2.06
Dlink Dir-850l Firmware 1.09
Dlink Dir-868l Firmware 1.10
2 Github repositories
9.8
CVSSv3
CVE-2021-44880
D-Link devices DIR_878 DIR_878_FW1.30B08_Hotfix_02 and DIR_882 DIR_882_FW1.30B06_Hotfix_02 were discovered to contain a command injection vulnerability in the system function. This vulnerability allows malicious users to execute arbitrary commands via a crafted HNAP1 POST request...
Dlink Dir-878 Firmware
Dlink Dir-878 Firmware 1.30b08
Dlink Dir-882 Firmware
Dlink Dir-882 Firmware 1.30b06
7.5
CVSSv3
CVE-2021-28840
Null Pointer Dereference vulnerability exists in D-Link DAP-2310 2.07.RC031, DAP-2330 1.07.RC028, DAP-2360 2.07.RC043, DAP-2553 3.06.RC027, DAP-2660 1.13.RC074, DAP-2690 3.16.RC100, DAP-2695 1.17.RC063, DAP-3320 1.01.RC014 and DAP-3662 1.01.RC022 in the upload_config function of ...
Dlink Dap-2310 Firmware 2.0.7.rc031
Dlink Dap-2330 Firmware 1.07.rc028
Dlink Dap-2360 Firmware 2.07.rc043
Dlink Dap-2553 Firmware 3.06.rc027
Dlink Dap-2660 Firmware 1.13.rc074
Dlink Dap-2690 Firmware 3.16.rc100
Dlink Dap-2695 Firmware 1.17.rc063
Dlink Dap-3320 Firmware 1.01.rc014
Dlink Dap-3662 Firmware 1.01.rc022
7.5
CVSSv3
CVE-2021-28839
Null Pointer Dereference vulnerability exists in D-Link DAP-2310 2.07.RC031, DAP-2330 1.07.RC028, DAP-2360 2.07.RC043, DAP-2553 3.06.RC027, DAP-2660 1.13.RC074, DAP-2690 3.16.RC100, DAP-2695 1.17.RC063, DAP-3320 1.01.RC014 and DAP-3662 1.01.RC022 in the upload_certificate functio...
Dlink Dap-2310 Firmware 2.0.7.rc031
Dlink Dap-2330 Firmware 1.07.rc028
Dlink Dap-2360 Firmware 2.07.rc043
Dlink Dap-2553 Firmware 3.06.rc027
Dlink Dap-2660 Firmware 1.13.rc074
Dlink Dap-2690 Firmware 3.16.rc100
Dlink Dap-2695 Firmware 1.17.rc063
Dlink Dap-3320 Firmware 1.01.rc014
Dlink Dap-3662 Firmware 1.01.rc022
NA
CVE-2014-3936
Stack-based buffer overflow in the do_hnap function in www/my_cgi.cgi in D-Link DSP-W215 (Rev. A1) with firmware 1.01b06 and previous versions, DIR-505 with firmware prior to 1.08b10, and DIR-505L with firmware 1.01 and previous versions allows remote malicious users to execute a...
Dlink Dir505 Shareport Mobile Companion Firmware
Dlink Dir505 Shareport Mobile Companion A1
Dlink Dir505l Shareport Mobile Companion Firmware
Dlink Dir-505l Shareport Mobile Companion A1
Dlink Dsp-w215 Firmware
Dlink Dsp-w215 A1
1 EDB exploit
9.8
CVSSv3
CVE-2019-18852
Certain D-Link devices have a hardcoded Alphanetworks user account with TELNET access because of /etc/config/image_sign or /etc/alpha_config/image_sign. This affects DIR-600 B1 V2.01 for WW, DIR-890L A1 v1.03, DIR-615 J1 v100 (for DCN), DIR-645 A1 v1.03, DIR-815 A1 v1.01, DIR-823...
Dlink Dir-600 B1 Firmware 2.01
Dlink Dir-615 J1 Firmware 100
Dlink Dir-645 A1 Firmware 1.03
Dlink Dir-815 A1 Firmware 1.01
Dlink Dir-823 A1 Firmware 1.01
Dlink Dir-842 C1 Firmware 3.00
Dlink Dir-890l A1 Firmware 1.03
8.8
CVSSv3
CVE-2017-17020
On D-Link DCS-5009 devices with firmware 1.08.11 and previous versions, DCS-5010 devices with firmware 1.14.09 and previous versions, and DCS-5020L devices with firmware prior to 1.15.01, command injection in alphapd (binary responsible for running the camera's web server) a...
Dlink Dcs-5009 Firmware
Dlink Dcs-5010 Firmware
Dlink Dcs-5020l Firmware
6.1
CVSSv3
CVE-2018-6527
XSS vulnerability in htdocs/webinc/js/adv_parent_ctrl_map.php in D-Link DIR-868L DIR868LA1_FW112b04 and previous versions, DIR-865L DIR-865L_REVA_FIRMWARE_PATCH_1.08.B01 and previous versions, and DIR-860L DIR860LA1_FW110b04 and previous versions allows remote malicious users to ...
Dlink Dir-860l Firmware
Dlink Dir-865l Firmware
Dlink Dir-868l Firmware
1 Github repository
6.1
CVSSv3
CVE-2018-6528
XSS vulnerability in htdocs/webinc/body/bsc_sms_send.php in D-Link DIR-868L DIR868LA1_FW112b04 and previous versions, DIR-865L DIR-865L_REVA_FIRMWARE_PATCH_1.08.B01 and previous versions, and DIR-860L DIR860LA1_FW110b04 and previous versions allows remote malicious users to read ...
Dlink Dir-860l Firmware
Dlink Dir-865l Firmware
Dlink Dir-868l Firmware
1 Github repository
6.1
CVSSv3
CVE-2018-6529
XSS vulnerability in htdocs/webinc/js/bsc_sms_inbox.php in D-Link DIR-868L DIR868LA1_FW112b04 and previous versions, DIR-865L DIR-865L_REVA_FIRMWARE_PATCH_1.08.B01 and previous versions, and DIR-860L DIR860LA1_FW110b04 and previous versions allows remote malicious users to read a...
Dlink Dir-860l Firmware
Dlink Dir-865l Firmware
Dlink Dir-868l Firmware
1 Github repository
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »