Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dlink dir-825 firmware - vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-43642
This vulnerability allows network-adjacent malicious users to execute arbitrary code on affected installations of D-Link DIR-825 1.0.9/EE routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the YouTube plugin for the xupnpd servi...
Dlink Dir-825/ee Firmware
Dlink Dir-825/ac Firmware
NA
CVE-2022-43645
This vulnerability allows network-adjacent malicious users to execute arbitrary code on affected installations of D-Link DIR-825 1.0.9/EE routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the IVI plugin for the xupnpd service, ...
Dlink Dir-825/ee Firmware
Dlink Dir-825/ac Firmware
NA
CVE-2022-43647
This vulnerability allows network-adjacent malicious users to execute arbitrary code on affected installations of D-Link DIR-825 1.0.9/EE routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the xupnpd service, which listens on TC...
Dlink Dir-825/ee Firmware
Dlink Dir-825/ac Firmware
NA
CVE-2022-43643
This vulnerability allows network-adjacent malicious users to execute arbitrary code on affected installations of D-Link DIR-825 1.0.9/EE routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the Generic plugin for the xupnpd servi...
Dlink Dir-825/ee Firmware
Dlink Dir-825/ac Firmware
NA
CVE-2022-43644
This vulnerability allows network-adjacent malicious users to execute arbitrary code on affected installations of D-Link DIR-825 1.0.9/EE routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the Dreambox plugin for the xupnpd serv...
Dlink Dir-825/ee Firmware
Dlink Dir-825/ac Firmware
NA
CVE-2022-43646
This vulnerability allows network-adjacent malicious users to execute arbitrary code on affected installations of D-Link DIR-825 1.0.9/EE routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the Vimeo plugin for the xupnpd service...
Dlink Dir-825/ee Firmware
Dlink Dir-825/ac Firmware
NA
CVE-2022-47035
Buffer Overflow Vulnerability in D-Link DIR-825 v1.33.0.44ebdd4-embedded and below allows malicious user to execute arbitrary code via the GetConfig method to the /CPE endpoint.
Dlink Dir-825 Firmware
9
CVSSv2
CVE-2021-46441
In the "webupg" binary of D-Link DIR-825 G1, because of the lack of parameter verification, attackers can use "cmd" parameters to execute arbitrary system commands after obtaining authorization.
Dlink Dir-825 Firmware -
7.5
CVSSv2
CVE-2021-46442
In the "webupg" binary of D-Link DIR-825 G1, attackers can bypass authentication through parameters "autoupgrade.asp", and perform functions such as downloading configuration files and updating firmware without authorization.
Dlink Dir-825 Firmware -
10
CVSSv2
CVE-2020-29557
An issue exists on D-Link DIR-825 R1 devices up to and including 3.0.1 prior to 2020-11-20. A buffer overflow in the web interface allows malicious users to achieve pre-authentication remote code execution.
Dlink Dir-825 R1 Firmware
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-0044
client side
CVE-2021-47601
deserialization
CVE-2024-34994
encryption
CVE-2021-47609
CVE-2024-37079
CVE-2024-38608
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »