Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
d-link vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-44928
D-Link DVG-G5402SP GE_1.03 exists to contain a command injection vulnerability via the Maintenance function.
D-link Dvg-g5402sp Firmware Ge 1.03
NA
CVE-2022-44929
An access control issue in D-Link DVG-G5402SP GE_1.03 allows unauthenticated malicious users to escalate privileges via arbitrarily editing VoIP SIB profiles.
D-link Dvg-g5402sp Firmware Ge 1.03
4.3
CVSSv2
CVE-2019-17663
D-Link DIR-866L 1.03B04 devices allow XSS via HtmlResponseMessage in the device common gateway interface, leading to common injection.
D-link Dir-866l Firmware 1.03b04
10
CVSSv2
CVE-2018-10996
The weblogin_log function in /htdocs/cgibin on D-Link DIR-629-B1 devices allows malicious users to execute arbitrary code or cause a denial of service (buffer overflow) via a session.cgi?ACTION=logout request involving a long REMOTE_ADDR environment variable.
D-link Dir-629-b Firmware -
10
CVSSv2
CVE-2018-11013
Stack-based buffer overflow in the websRedirect function in GoAhead on D-Link DIR-816 A2 (CN) routers with firmware version 1.10B05 allows unauthenticated remote malicious users to execute arbitrary code via a request with a long HTTP Host header.
D-link Dir-816 A2 Firmware 1.10b05
4.3
CVSSv2
CVE-2010-0936
Cross-site scripting (XSS) vulnerability in auth.asp on the D-LINK DKVM-IP8 with firmware 2282_dlinkA4_p8_20071213 allows remote malicious users to inject arbitrary web script or HTML via the nickname parameter.
D-link Dkvm-ip8 2282 Dlinka4 P8 20071213
2 EDB exploits
9
CVSSv2
CVE-2018-8941
Diagnostics functionality on D-Link DSL-3782 devices with firmware EU v. 1.01 has a buffer overflow, allowing authenticated remote malicious users to execute arbitrary code via a long Addr value to the 'set Diagnostics_Entry' function in an HTTP request, related to /use...
D-link Dsl-3782 Firmware 1.01
1 Github repository
5
CVSSv2
CVE-2001-1137
D-Link DI-704 Internet Gateway firmware earlier than V2.56b6 allows remote malicious users to cause a denial of service (reboot) via malformed IP datagram fragments.
D-link Dl-704 V2.56b5
1 EDB exploit
4.3
CVSSv2
CVE-2017-10676
On D-Link DIR-600M devices before C1_v3.05ENB01_beta_20170306, XSS was found in the form2userconfig.cgi username parameter.
D-link Dir-600m Firmware Fw3.05b01
9
CVSSv2
CVE-2018-16408
D-Link DIR-846 devices with firmware 100.26 allow remote malicious users to execute arbitrary code as root via a SetNetworkTomographySettings request by leveraging admin access.
D-link Dir-846 Firmware 100.26
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
administrator privileges
CVE-2024-1579
hardcoded
CVE-2023-20198
CVE-2024-33587
CVE-2024-33449
CVE-2024-4308
HTML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »