Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Dlink Subscribe
Total 1257 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-43198 1 Dlink 2 Di-7200g, Di-7200g Firmware 2024-11-21 N/A 9.8 CRITICAL
D-Link device DI-7200GV2.E1 v21.04.09E1 was discovered to contain a stack overflow via the popupId parameter in the H5/hi_block.asp function.
CVE-2023-43197 1 Dlink 2 Di-7200g, Di-7200g Firmware 2024-11-21 N/A 9.8 CRITICAL
D-Link device DI-7200GV2.E1 v21.04.09E1 was discovered to contain a stack overflow via the fn parameter in the tgfile.asp function.
CVE-2023-43196 1 Dlink 2 Di-7200g, Di-7200g Firmware 2024-11-21 N/A 9.8 CRITICAL
D-Link DI-7200GV2.E1 v21.04.09E1 was discovered to contain a stack overflow via the zn_jb parameter in the arp_sys.asp function.
CVE-2023-43130 1 Dlink 2 Dir-806, Dir-806 Firmware 2024-11-21 N/A 9.8 CRITICAL
D-LINK DIR-806 1200M11AC wireless router DIR806A1_FW100CNb11 is vulnerable to command injection.
CVE-2023-43129 1 Dlink 2 Dir-806, Dir-806 Firmware 2024-11-21 N/A 9.8 CRITICAL
D-LINK DIR-806 1200M11AC wireless router DIR806A1_FW100CNb11 is vulnerable to command injection due to lax filtering of REMOTE_PORT parameters.
CVE-2023-43128 1 Dlink 2 Dir-806, Dir-806 Firmware 2024-11-21 N/A 9.8 CRITICAL
D-LINK DIR-806 1200M11AC wireless router DIR806A1_FW100CNb11 is vulnerable to command injection due to lax filtering of HTTP_ST parameters.
CVE-2023-42406 1 Dlink 2 Dar-7000, Dar-7000 Firmware 2024-11-21 N/A 9.8 CRITICAL
SQL injection vulnerability in D-Link Online behavior audit gateway DAR-7000 V31R02B1413C allows a remote attacker to obtain sensitive information and execute arbitrary code via the editrole.php component.
CVE-2023-41603 1 Dlink 2 R15, R15 Firmware 2024-11-21 N/A 5.3 MEDIUM
D-Link R15 before v1.08.02 was discovered to contain no firewall restrictions for IPv6 traffic. This allows attackers to arbitrarily access any services running on the device that may be inadvertently listening via IPv6.
CVE-2023-39750 1 Dlink 2 Dap-2660, Dap-2660 Firmware 2024-11-21 N/A 9.8 CRITICAL
D-Link DAP-2660 v1.13 was discovered to contain a buffer overflow via the f_ipv6_enable parameter at /bsc_ipv6. This vulnerability is exploited via a crafted POST request.
CVE-2023-39749 1 Dlink 2 Dap-2660, Dap-2660 Firmware 2024-11-21 N/A 9.8 CRITICAL
D-Link DAP-2660 v1.13 was discovered to contain a buffer overflow via the component /adv_resource. This vulnerability is exploited via a crafted GET request.
CVE-2023-39674 1 Dlink 2 Dir-880l A1, Dir-880l A1 Firmware 2024-11-21 N/A 9.8 CRITICAL
D-Link DIR-880 A1_FW107WWb08 was discovered to contain a buffer overflow via the function fgets.
CVE-2023-39671 1 Dlink 2 Dir-880l A1, Dir-880l A1 Firmware 2024-11-21 N/A 9.8 CRITICAL
D-Link DIR-880 A1_FW107WWb08 was discovered to contain a buffer overflow via the function FUN_0001be68.
CVE-2023-39669 1 Dlink 2 Dir-880l A1, Dir-880l A1 Firmware 2024-11-21 N/A 7.5 HIGH
D-Link DIR-880 A1_FW107WWb08 was discovered to contain a NULL pointer dereference in the function FUN_00010824.
CVE-2023-39668 1 Dlink 2 Dir-868l, Dir-868l Firmware 2024-11-21 N/A 9.8 CRITICAL
D-Link DIR-868L fw_revA_1-12_eu_multi_20170316 was discovered to contain a buffer overflow via the param_2 parameter in the inet_ntoa() function.
CVE-2023-39667 1 Dlink 2 Dir-868l, Dir-868l Firmware 2024-11-21 N/A 9.8 CRITICAL
D-Link DIR-868L fw_revA_1-12_eu_multi_20170316 was discovered to contain a buffer overflow via the param_2 parameter in the FUN_0000acb4 function.
CVE-2023-39666 1 Dlink 2 Dir-842, Dir-842 Firmware 2024-11-21 N/A 9.8 CRITICAL
D-Link DIR-842 fw_revA_1-02_eu_multi_20151008 was discovered to contain multiple buffer overflows in the fgets function via the acStack_120 and acStack_220 parameters.
CVE-2023-39665 1 Dlink 2 Dir-868l, Dir-868l Firmware 2024-11-21 N/A 9.8 CRITICAL
D-Link DIR-868L fw_revA_1-12_eu_multi_20170316 was discovered to contain a buffer overflow via the acStack_50 parameter.
CVE-2023-39638 1 Dlink 2 Dir-859 A1, Dir-859 A1 Firmware 2024-11-21 N/A 9.8 CRITICAL
D-LINK DIR-859 A1 1.05 and A1 1.06B01 Beta01 was discovered to contain a command injection vulnerability via the lxmldbc_system function at /htdocs/cgibin.
CVE-2023-39637 1 Dlink 2 Dir-816, Dir-816 Firmware 2024-11-21 N/A 9.8 CRITICAL
D-Link DIR-816 A2 1.10 B05 was discovered to contain a command injection vulnerability via the component /goform/Diagnosis.
CVE-2023-37791 1 Dlink 2 Dir-619l, Dir-619l Firmware 2024-11-21 N/A 9.8 CRITICAL
D-Link DIR-619L v2.04(TW) was discovered to contain a stack overflow via the curTime parameter at /goform/formLogin.