Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dlink dir-815 firmware vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2024-22651
There is a command injection vulnerability in the ssdpcgi_main function of cgibin binary in D-Link DIR-815 router firmware v1.04.
Dlink Dir-815 Firmware
9.8
CVSSv3
CVE-2023-51123
An issue discovered in D-Link dir815 v.1.01SSb08.bin allows a remote malicious user to execute arbitrary code via a crafted POST request to the service parameter in the soapcgi_main function of the cgibin binary component.
Dlink Dir-815 Firmware 1.01ssb08.bin
9.8
CVSSv3
CVE-2019-18852
Certain D-Link devices have a hardcoded Alphanetworks user account with TELNET access because of /etc/config/image_sign or /etc/alpha_config/image_sign. This affects DIR-600 B1 V2.01 for WW, DIR-890L A1 v1.03, DIR-615 J1 v100 (for DCN), DIR-645 A1 v1.03, DIR-815 A1 v1.01, DIR-823...
Dlink Dir-600 B1 Firmware 2.01
Dlink Dir-615 J1 Firmware 100
Dlink Dir-645 A1 Firmware 1.03
Dlink Dir-815 A1 Firmware 1.01
Dlink Dir-823 A1 Firmware 1.01
Dlink Dir-842 C1 Firmware 3.00
Dlink Dir-890l A1 Firmware 1.03
9.8
CVSSv3
CVE-2018-10106
D-Link DIR-815 REV. B (with firmware through DIR-815_REVB_FIRMWARE_PATCH_2.07.B01) devices have permission bypass and information disclosure in /htdocs/web/getcfg.php, as demonstrated by a /getcfg.php?a=%0a_POST_SERVICES%3DDEVICE.ACCOUNT%0aAUTHORIZED_GROUP%3D1 request.
Dlink Dir-815 Firmware
9.8
CVSSv3
CVE-2015-0150
The remote administration UI in D-Link DIR-815 devices with firmware prior to 2.07.B01 allows remote malicious users to bypass intended access restrictions via unspecified vectors.
Dlink Dir-815 Firmware
9.8
CVSSv3
CVE-2015-0152
D-Link DIR-815 devices with firmware prior to 2.07.B01 allow remote malicious users to obtain sensitive information by leveraging cleartext storage of the administrative password.
Dlink Dir-815 Firmware
9.8
CVSSv3
CVE-2014-8888
The remote administration interface in D-Link DIR-815 devices with firmware prior to 2.03.B02 allows remote malicious users to execute arbitrary commands via vectors related to an "HTTP command injection issue."
Dlink Dir-815 Firmware 2.03.b02
8.8
CVSSv3
CVE-2015-0151
Cross-site request forgery (CSRF) vulnerability in D-Link DIR-815 devices with firmware prior to 2.07.B01 allows remote malicious users to hijack the authentication of arbitrary users for requests that insert XSS sequences.
Dlink Dir-815 Firmware
7.5
CVSSv3
CVE-2023-37758
D-LINK DIR-815 v1.01 exists to contain a buffer overflow via the component /web/captcha.cgi.
Dlink Dir-815 Firmware 1.0.1
7.5
CVSSv3
CVE-2015-0153
D-Link DIR-815 devices with firmware prior to 2.07.B01 allow remote malicious users to obtain sensitive information by leveraging cleartext storage of the wireless key.
Dlink Dir-815 Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-6267
XML injection
CVE-2024-37673
CVE-2024-6266
CVE-2024-30078
arbitrary
CVE-2024-36886
CVE-2024-5346
template injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »