Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dlink vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2019-13101
An issue exists on D-Link DIR-600M 3.02, 3.03, 3.04, and 3.06 devices. wan.htm can be accessed directly without authentication, which can lead to disclosure of information about the WAN, and can also be leveraged by an malicious user to modify the data fields of the page.
Dlink Dir-600m Firmware 3.02
Dlink Dir-600m Firmware 3.03
Dlink Dir-600m Firmware 3.04
Dlink Dir-600m Firmware 3.06
1 EDB exploit
1 Github repository
9.8
CVSSv3
CVE-2015-1187
The ping tool in multiple D-Link and TRENDnet devices allow remote malicious users to execute arbitrary code via the ping_addr parameter to ping.ccp.
Dlink Dir-626l Firmware 1.04
Dlink Dir-636l Firmware 1.04
Dlink Dir-808l Firmware 1.03
Dlink Dir-810l Firmware 1.01
Dlink Dir-810l Firmware 2.02
Dlink Dir-820l Firmware 1.02
Dlink Dir-820l Firmware 1.05
Dlink Dir-820l Firmware 2.01
Dlink Dir-826l Firmware 1.00
Dlink Dir-830l Firmware 1.00
Dlink Dir-836l Firmware 1.01
Trendnet Tew-731br Firmware 2.01
Dlink Dir-651 Firmware 1.10na
Trendnet Tew-651br Firmware -
Trendnet Tew-652br Firmware -
Trendnet Tew-711br Firmware 1.00
Trendnet Tew-810dr Firmware 1.00
Trendnet Tew-813dru Firmware 1.00
1 EDB exploit
1 Article
NA
CVE-2013-4707
The SSH implementation on D-Link Japan DES-3810 devices with firmware before R2.20.011 allows remote authenticated users to cause a denial of service (device hang) by leveraging login access.
Dlink Des-3810 Firmware
Dlink Des-3810 Firmware R2.00.009
Dlink Des-3810 -
8.8
CVSSv3
CVE-2022-41140
This vulnerability allows network-adjacent malicious users to execute arbitrary code on affected installations of multiple D-Link routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the lighttpd service, which listens on TCP port...
Dlink Dir-882-us Firmware
Dlink Dir-867 Firmware
Dlink Dir-878 Firmware
NA
CVE-2013-5998
Unspecified vulnerability in the Web manager implementation on D-Link Japan DES-3800 devices with firmware before R4.50B58 allows remote malicious users to cause a denial of service (device hang) via unknown vectors, a different vulnerability than CVE-2013-5997.
Dlink Des-3800 Firmware 4.00
Dlink Des-3800 Firmware 4.50
Dlink Des-3800
NA
CVE-2013-5997
Unspecified vulnerability in the SSH implementation on D-Link Japan DES-3800 devices with firmware before R4.50B58 allows remote authenticated users to cause a denial of service (device hang) via unknown vectors, a different vulnerability than CVE-2013-5998.
Dlink Des-3800 Firmware 4.00
Dlink Des-3800 Firmware 4.50
Dlink Des-3800
9.8
CVSSv3
CVE-2021-39613
D-Link DVG-3104MS version 1.0.2.0.3, 1.0.2.0.4, and 1.0.2.0.4E contains hard-coded credentials for undocumented user accounts in the '/etc/passwd' file. As weak passwords have been used, the plaintext passwords can be recovered from the hash values. NOTE: This vulnerabi...
Dlink Dvg-3104ms Firmware 1.0.2.0.3
Dlink Dvg-3104ms Firmware 1.0.2.0.4
Dlink Dvg-3104ms Firmware 1.0.2.0.4e
NA
CVE-2014-3872
Multiple SQL injection vulnerabilities in the administration login page in D-Link DAP-1350 (Rev. A1) with firmware 1.14 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) username or (2) password.
Dlink Dap-1350 Firmware
Dlink Dap-1350 Firmware 1.10
Dlink Dap-1350 Rev. A1
9.8
CVSSv3
CVE-2017-15909
D-Link DGS-1500 Ax devices prior to 2.51B021 have a hardcoded password, which allows remote malicious users to obtain shell access.
Dlink Dgs-1500 Firmware 2.10.002
Dlink Dgs-1500 Firmware 2.50.008
Dlink Dgs-1500 Firmware 2.51.005
9.8
CVSSv3
CVE-2018-18007
atbox.htm on D-Link DSL-2770L devices allows remote unauthenticated malicious users to discover admin credentials.
Dlink Dsl-2770l Firmware Me 1.01
Dlink Dsl-2770l Firmware Me 1.02
Dlink Dsl-2770l Firmware Me 1.06
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »