Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dir-868l_firmware vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2019-16190
SharePort Web Access on D-Link DIR-868L REVB up to and including 2.03, DIR-885L REVA up to and including 1.20, and DIR-895L REVA up to and including 1.21 devices allows Authentication Bypass, as demonstrated by a direct request to folder_view.php or category_view.php.
Dlink Dir-868l Firmware
Dlink Dir-885l Firmware
Dlink Dir-895l Firmware
9.8
CVSSv3
CVE-2018-6530
OS command injection vulnerability in soap.cgi (soapcgi_main in cgibin) in D-Link DIR-880L DIR-880L_REVA_FIRMWARE_PATCH_1.08B04 and previous versions, DIR-868L DIR868LA1_FW112b04 and previous versions, DIR-65L DIR-865L_REVA_FIRMWARE_PATCH_1.08.B01 and previous versions, and DIR-8...
Dlink Dir-860l Firmware
Dlink Dir-865l Firmware
Dlink Dir-868l Firmware
Dlink Dir-880l Firmware
2 Github repositories
7.5
CVSSv3
CVE-2019-7642
D-Link routers with the mydlink feature have some web interfaces without authentication requirements. An attacker can remotely obtain users' DNS query logs and login logs. Vulnerable targets include but are not limited to the latest firmware versions of DIR-817LW (A1-1.04), ...
Dlink Dir-817lw Firmware 1.04
Dlink Dir-816l Firmware 2.06
Dlink Dir-816 Firmware 2.06
Dlink Dir-850l Firmware 1.09
Dlink Dir-868l Firmware 1.10
2 Github repositories
9.8
CVSSv3
CVE-2017-14948
Certain D-Link products are affected by: Buffer Overflow. This affects DIR-880L 1.08B04 and DIR-895 L/R 1.13b03. The impact is: execute arbitrary code (remote). The component is: htdocs/fileaccess.cgi. The attack vector is: A crafted HTTP request handled by fileacces.cgi could al...
Dlink Dir-868l Firmware -
Dlink Dir-890l Firmware -
Dlink Dir-885l Firmware -
Dlink Dir-895l Firmware 1.13b03
Dlink Dir-880l Firmware 1.08b04
Dlink Dir-895r Firmware 1.13b03
1 Github repository
9.8
CVSSv3
CVE-2016-6563
Processing malformed SOAP messages when performing the HNAP Login action causes a buffer overflow in the stack in some D-Link DIR routers. The vulnerable XML fields within the SOAP body are: Action, Username, LoginPassword, and Captcha. The following products are affected: DIR-82...
Dlink Dir-823 Firmware -
Dlink Dir-822 Firmware -
Dlink Dir-818l\\(w\\) Firmware -
Dlink Dir-895l Firmware -
Dlink Dir-890l Firmware -
Dlink Dir-885l Firmware -
Dlink Dir-880l Firmware -
Dlink Dir-868l Firmware -
Dlink Dir-850l Firmware -
1 EDB exploit
9.8
CVSSv3
CVE-2018-19987
D-Link DIR-822 Rev.B 202KRb06, DIR-822 Rev.C 3.10B06, DIR-860L Rev.B 2.03.B03, DIR-868L Rev.B 2.05B02, DIR-880L Rev.A 1.20B01_01_i3se_BETA, and DIR-890L Rev.A 1.21B02_BETA devices mishandle IsAccessPoint in /HNAP1/SetAccessPointMode. In the SetAccessPointMode.php source code, the...
D-link Dir-818lw Firmware 2.05.b03
D-link Dir-822 Firmware 202krb06
Dlink Dir-822 Firmware 3.10b06
D-link Dir-860l Firmware 2.03.b03
D-link Dir-868l Firmware 2.05b02
D-link Dir-880l Firmware 1.20b01 01 I3se
D-link Dir-890l\\/r Firmware 1.21b02
2 Github repositories
9.8
CVSSv3
CVE-2016-5681
Stack-based buffer overflow in dws/api/Login on D-Link DIR-850L B1 2.07 prior to 2.07WWB05, DIR-817 Ax, DIR-818LW Bx prior to 2.05b03beta03, DIR-822 C1 3.01 prior to 3.01WWb02, DIR-823 A1 1.00 prior to 1.00WWb05, DIR-895L A1 1.11 prior to 1.11WWb04, DIR-890L A1 1.09 prior to 1.09...
Dlink Dir-868l Firmware
Dlink Dir-822 Firmware 3.01
D-link Dir-880l Firmware
D-link Dir-850l Firmare
D-link Dir-895l Firmware
D-link Dir-817l\\(w\\) Firmware
D-link Dir-818l\\(w\\) Firmware
D-link Dir-890l Firmware
D-link Dir-823 Firmware
D-link Dir-885l Firmware
7.5
CVSSv3
CVE-2019-20213
D-Link DIR-859 routers before v1.07b03_beta allow Unauthenticated Information Disclosure via the AUTHORIZED_GROUP=1%0a value, as demonstrated by vpnconfig.php.
Dlink Dir-859 Firmware
Dlink Dir-859 Firmware 1.06b01
Dlink Dir-822 Firmware
Dlink Dir-823 Firmware
Dlink Dir-865l Firmware
Dlink Dir-868l Firmware
Dlink Dir-869 Firmware
Dlink Dir-880l Firmware
Dlink Dir-890l Firmware
Dlink Dir-890r Firmware
Dlink Dir-885l Firmware
Dlink Dir-885r Firmware
Dlink Dir-895l Firmware
Dlink Dir-895r Firmware
Dlink Dir-818lx Firmware -
9.8
CVSSv3
CVE-2019-17621
The UPnP endpoint URL /gena.cgi in the D-Link DIR-859 Wi-Fi router 1.05 and 1.06B01 Beta01 allows an Unauthenticated remote malicious user to execute system commands as root, by sending a specially crafted HTTP SUBSCRIBE request to the UPnP service when connecting to the local ne...
Dlink Dir-859 Firmware
Dlink Dir-859 Firmware 1.06b01
Dlink Dir-822 Firmware
Dlink Dir-823 Firmware
Dlink Dir-823 Firmware 1.00b06
Dlink Dir-865l Firmware
Dlink Dir-868l Firmware
Dlink Dir-869 Firmware
Dlink Dir-869 Firmware 1.03b02
Dlink Dir-880l Firmware
Dlink Dir-890l Firmware
Dlink Dir-890l Firmware 1.11b01
Dlink Dir-890r Firmware
Dlink Dir-890r Firmware 1.11b01
Dlink Dir-885l Firmware
Dlink Dir-885r Firmware
Dlink Dir-895l Firmware
Dlink Dir-895r Firmware
Dlink Dir-818lx Firmware -
7 Github repositories
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2