Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dlink vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2021-41753
A denial-of-service attack in WPA2, and WPA3-SAE authentication methods in D-Link DIR-X1560, v1.04B04, and DIR-X6060, v1.11B04 allows a remote unauthenticated malicious user to disconnect a wireless client via sending specific spoofed SAE authentication frames.
Dlink Dir-x1560 Firmware
Dlink Dir-x6060 Firmware
7.5
CVSSv3
CVE-2017-8405
An issue exists on D-Link DCS-1130 and DCS-1100 devices. The binary rtspd in /sbin folder of the device handles all the rtsp connections received by the device. It seems that the binary loads at address 0x00012CF4 a flag called "Authenticate" that indicates whether a us...
Dlink Dcs-1100 Firmware -
Dlink Dcs-1130 Firmware -
9.8
CVSSv3
CVE-2017-8410
An issue exists on D-Link DCS-1100 and DCS-1130 devices. The binary rtspd in /sbin folder of the device handles all the rtsp connections received by the device. It seems that the binary performs a memcpy operation at address 0x00011E34 with the value sent in the "Authorizati...
Dlink Dcs-1100 Firmware -
Dlink Dcs-1130 Firmware -
8.8
CVSSv3
CVE-2017-8412
An issue exists on D-Link DCS-1100 and DCS-1130 devices. The device has a custom binary called mp4ts under the /var/www/video folder. It seems that this binary dumps the HTTP VERB in the system logs. As a part of doing that it retrieves the HTTP VERB sent by the user and uses a v...
Dlink Dcs-1130 Firmware -
Dlink Dcs-1100 Firmware -
8.8
CVSSv3
CVE-2017-8413
An issue exists on D-Link DCS-1100 and DCS-1130 devices. The device runs a custom daemon on UDP port 5978 which is called "dldps2121" and listens for broadcast packets sent on 255.255.255.255. This daemon handles custom D-Link UDP based protocol that allows D-Link mobil...
Dlink Dcs-1130 Firmware -
Dlink Dcs-1100 Firmware -
9.8
CVSSv3
CVE-2017-8415
An issue exists on D-Link DCS-1100 and DCS-1130 devices. The device has a custom telnet daemon as a part of the busybox and retrieves the password from the shadow file using the function getspnam at address 0x00053894. Then performs a crypt operation on the password retrieved fro...
Dlink Dcs-1130 Firmware -
Dlink Dcs-1100 Firmware -
8.8
CVSSv3
CVE-2017-8416
An issue exists on D-Link DCS-1100 and DCS-1130 devices. The device runs a custom daemon on UDP port 5978 which is called "dldps2121" and listens for broadcast packets sent on 255.255.255.255. This daemon handles custom D-Link UDP based protocol that allows D-Link mobil...
Dlink Dcs-1130 Firmware -
Dlink Dcs-1100 Firmware -
7.5
CVSSv3
CVE-2020-25078
An issue exists on D-Link DCS-2530L prior to 1.06.01 Hotfix and DCS-2670L up to and including 2.02 devices. The unauthenticated /config/getuser endpoint allows for remote administrator password disclosure.
Dlink Dcs-2530l Firmware
Dlink Dcs-2670l Firmware
5 Github repositories
8.8
CVSSv3
CVE-2020-25079
An issue exists on D-Link DCS-2530L prior to 1.06.01 Hotfix and DCS-2670L up to and including 2.02 devices. cgi-bin/ddns_enc.cgi allows authenticated command injection.
Dlink Dcs-2530l Firmware
Dlink Dcs-2670l Firmware
1 Github repository
7.8
CVSSv3
CVE-2017-8414
An issue exists on D-Link DCS-1100 and DCS-1130 devices. The binary orthrus in /sbin folder of the device handles all the UPnP connections received by the device. It seems that the binary performs a sprintf operation at address 0x0000A3E4 with the value in the command line parame...
Dlink Dcs-1100 Firmware -
Dlink Dcs-1130 Firmware -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4654
CVE-2023-49606
encryption
NULL pointer dereference
CVE-2024-4439
CVE-2024-4649
race condition
CVE-2024-27202
CVE-2024-34566
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »