Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dlink vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2020-25757
A lack of input validation and access controls in Lua CGIs on D-Link DSR VPN routers may result in arbitrary input being passed to system command APIs, resulting in arbitrary command execution with root privileges. This affects DSR-150, DSR-250, DSR-500, and DSR-1000AC with firmw...
Dlink Dsr-150 Firmware
Dlink Dsr-150n Firmware
Dlink Dsr-250 Firmware
Dlink Dsr-250n Firmware
Dlink Dsr-500 Firmware
Dlink Dsr-500n Firmware
Dlink Dsr-500ac Firmware
Dlink Dsr-1000 Firmware
Dlink Dsr-1000n Firmware
Dlink Dsr-1000ac Firmware
8.8
CVSSv3
CVE-2020-25758
An issue exists on D-Link DSR-250 3.17 devices. Insufficient validation of configuration file checksums could allow a remote, authenticated malicious user to inject arbitrary crontab entries into saved configurations before uploading. These entries are executed as root.
Dlink Dsr-150 Firmware
Dlink Dsr-150n Firmware
Dlink Dsr-250 Firmware
Dlink Dsr-250n Firmware
Dlink Dsr-500 Firmware
Dlink Dsr-500n Firmware
Dlink Dsr-500ac Firmware
Dlink Dsr-1000 Firmware
Dlink Dsr-1000n Firmware
Dlink Dsr-1000ac Firmware
8.8
CVSSv3
CVE-2020-25759
An issue exists on D-Link DSR-250 3.17 devices. Certain functionality in the Unified Services Router web interface could allow an authenticated malicious user to execute arbitrary commands, due to a lack of validation of inputs provided in multipart HTTP POST requests.
Dlink Dsr-150 Firmware
Dlink Dsr-150n Firmware
Dlink Dsr-250 Firmware
Dlink Dsr-250n Firmware
Dlink Dsr-500 Firmware
Dlink Dsr-500n Firmware
Dlink Dsr-500ac Firmware
Dlink Dsr-1000 Firmware
Dlink Dsr-1000n Firmware
Dlink Dsr-1000ac Firmware
7.5
CVSSv3
CVE-2021-28838
Null pointer dereference vulnerability in D-Link DAP-2310 2,10RC039, DAP-2330 1.10RC036 BETA, DAP-2360 2.10RC055, DAP-2553 3.10rc039 BETA, DAP-2660 1.15rc131b, DAP-2690 3.20RC115 BETA, DAP-2695 1.20RC093, DAP-3320 1.05RC027 BETA and DAP-3662 1.05rc069 in the sbin/httpd binary. Th...
Dlink Dap-2310 Firmware
Dlink Dap-2330 Firmware
Dlink Dap-2330 Firmware 1.10rc036
Dlink Dap-2360 Firmware
Dlink Dap-2553 Firmware
Dlink Dap-2553 Firmware 3.10rc039
Dlink Dap-2660 Firmware
Dlink Dap-2690 Firmware
Dlink Dap-2690 Firmware 3.20rc115
Dlink Dap-2695 Firmware
Dlink Dap-3320 Firmware
Dlink Dap-3320 Firmware 1.05rc027
Dlink Dap-3662 Firmware
Dlink Dap-3662 Firmware 1.05rc069
7.5
CVSSv3
CVE-2022-38873
D-Link devices DAP-2310 v2.10rc036 and previous versions, DAP-2330 v1.06rc020 and previous versions, DAP-2360 v2.10rc050 and previous versions, DAP-2553 v3.10rc031 and previous versions, DAP-2660 v1.15rc093 and previous versions, DAP-2690 v3.20rc106 and previous versions, DAP-269...
Dlink Dap-2310 Firmware
Dlink Dap-2330 Firmware
Dlink Dap-2360 Firmware
Dlink Dap-2553 Firmware
Dlink Dap-2660 Firmware
Dlink Dap-2690 Firmware
Dlink Dap-2695 Firmware
Dlink Dap-2695 Firmware 1.20rc119
Dlink Dap-3320 Firmware
Dlink Dap-3320 Firmware 1.05rc027
Dlink Dap-3662 Firmware
7.8
CVSSv3
CVE-2022-1262
A command injection vulnerability in the protest binary allows an attacker with access to the remote command line interface to execute arbitrary commands as root.
Dlink Dir-1360 Firmware 1.02b03
Dlink Dir-1360 Firmware 1.03b02
Dlink Dir-1360 Firmware 1.11b04
Dlink Dir-1760 Firmware 1.01b04
Dlink Dir-1760 Firmware 1.11b03
Dlink Dir-1960 Firmware 1.02b01
Dlink Dir-1960 Firmware 1.03b03
Dlink Dir-1960 Firmware 1.11b03
Dlink Dir-2640 Firmware 1.11b02
Dlink Dir-2660 Firmware 1.04b03
Dlink Dir-2660 Firmware 1.11b04
Dlink Dir-3040 Firmware 1.13b03
Dlink Dir-3060 Firmware 1.00b12
Dlink Dir-3060 Firmware 1.11b04
Dlink Dir-867 Firmware 1.20b10
Dlink Dir-878 Firmware 1.20b05
Dlink Dir-878 Firmware 1.30b08
Dlink Dir-882 Firmware 1.20b06
Dlink Dir-1360 Firmware 1.00b15
Dlink Dir-1360 Firmware 1.01b03
Dlink Dir-2640 Firmware 1.01b04
Dlink Dir-2660 Firmware 1.00b14
7.5
CVSSv3
CVE-2018-10822
Directory traversal vulnerability in the web interface on D-Link DWR-116 up to and including 1.06, DIR-140L up to and including 1.02, DIR-640L up to and including 1.02, DWR-512 up to and including 2.02, DWR-712 up to and including 2.02, DWR-912 up to and including 2.02, DWR-921 u...
Dlink Dwr-116 Firmware
Dlink Dir-140l Firmware
Dlink Dir-640l Firmware
Dlink Dwr-512 Firmware
Dlink Dwr-712 Firmware
Dlink Dwr-912 Firmware
Dlink Dwr-921 Firmware
Dlink Dwr-111 Firmware
1 Article
9.8
CVSSv3
CVE-2013-5945
Multiple SQL injection vulnerabilities in D-Link DSR-150 with firmware prior to 1.08B44; DSR-150N with firmware prior to 1.05B64; DSR-250 and DSR-250N with firmware prior to 1.08B44; and DSR-500, DSR-500N, DSR-1000, and DSR-1000N with firmware prior to 1.08B77 allow remote malici...
Dlink Dsr-150 Firmware
Dlink Dsr-150n Firmware
Dlink Dsr-250 Firmware
Dlink Dsr-250n Firmware
Dlink Dsr-500 Firmware
Dlink Dsr-500n Firmware
Dlink Dsr-1000 Firmware
Dlink Dsr-1000n Firmware
1 EDB exploit
9.8
CVSSv3
CVE-2018-10824
An issue exists on D-Link DWR-116 up to and including 1.06, DIR-140L up to and including 1.02, DIR-640L up to and including 1.02, DWR-512 up to and including 2.02, DWR-712 up to and including 2.02, DWR-912 up to and including 2.02, DWR-921 up to and including 2.02, and DWR-111 up...
Dlink Dwr-116 Firmware
Dlink Dir-140l Firmware
Dlink Dir-640l Firmware
Dlink Dwr-512 Firmware
Dlink Dwr-712 Firmware
Dlink Dwr-912 Firmware
Dlink Dwr-921 Firmware
Dlink Dwr-111 Firmware
1 Article
9.8
CVSSv3
CVE-2018-18008
spaces.htm on multiple D-Link devices (DSL, DIR, DWR) allows remote unauthenticated malicious users to discover admin credentials.
Dlink Dsl-2770l Firmware Me 1.06
Dlink Dsl-2770l Firmware Me 1.02
Dlink Dsl-2770l Firmware Me 1.01
Dlink Dir-140l Firmware 1.02
Dlink Dir-140l Firmware 1.01ru
Dlink Dir-140l Firmware 1.00
Dlink Dir-640l Firmware 1.02
Dlink Dir-640l Firmware 1.01ru
Dlink Dir-640l Firmware 1.00
Dlink Dwr-116 Firmware 2.01
Dlink Dwr-116 Firmware 1.03
Dlink Dwr-116 Firmware 1.05
Dlink Dwr-116 Firmware 2.02
Dlink Dwr-512 Firmware 1.03
Dlink Dwr-512 Firmware 1.05
Dlink Dwr-512 Firmware 2.01
Dlink Dwr-512 Firmware 2.02
Dlink Dwr-555 Firmware 1.03
Dlink Dwr-555 Firmware 1.05
Dlink Dwr-555 Firmware 2.01
Dlink Dwr-555 Firmware 2.02
Dlink Dwr-921 Firmware 1.03
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
cross-site request forgery
unauthorized
CVE-2024-33925
reflected XSS
CVE-2023-51580
CVE-2023-51579
CVE-2015-2051
CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »