D-Link Latest Vulnerabilities

September 16

Wireless Routers Vulnerable to Command Injection Attacks

CVE-2024-45698

D-linkDir-x4860 A18.8HIGH

Unauthorized Remote Access Vulnerability in D-Link Wireless Routers

CVE-2024-45697

D-linkDir-x4860 A19.8CRITICAL

Hidden Functionality in D-Link Routers Exposes Telnet Service

CVE-2024-45696

D-linkDir-x4860 A18.8HIGH

Buffer Overflow Vulnerability Affects D-Link Routers

CVE-2024-45695

D-linkDir-x4860 A19.8CRITICAL

Stack-based Buffer Overflow Vulnerability Affects D-Link Wireless Routers

CVE-2024-45694

D-linkDir-x5460 A19.8CRITICAL

September 9

Stack Overflow Vulnerability in DBsrv_asp Function Affects D-Link DI-8100

CVE-2024-44375

D-LinkDi-8100 Firmware7.5HIGH

Remote Command Execution Vulnerability in D-Link Devices

CVE-2024-44334

D-Link

D-Link DI-8300 vulnerable to command injection

CVE-2024-44410

D-LinkDi-8300 Firmware9.8CRITICAL

D-Link Devices at Risk of Remote Command Execution Due to Version_upgrade.asp Vulnerability

CVE-2024-44335

D-Link

{"D-Link Devices Vulnerable to Remote Command Execution"}

CVE-2024-44333

D-Link

September 6

CVE-2024-44402

D-LinkDi-8100g Firmware9.8CRITICAL

D-Link DI-8100G Vulnerable to Command Injection via Upgrade Filter

CVE-2024-44401

D-LinkDi-8100g Firmware9.8CRITICAL

CVE-2024-44408

D-LinkDir-823g Firmware7.5HIGH

September 5

D-Link DNS-320 2.02b01 Vulnerable to Information Disclosure via Remote Exploit

CVE-2024-8461

D-linkDns-3205.3MEDIUM

DNS-320 2.02b01 Vulnerability: Information Disclosure Risk

CVE-2024-8460

D-linkDns-3205.9MEDIUM

September 4

CVE-2024-44400

D-LinkDi-8400 Firmware9.8CRITICAL

August 27

Critical Vulnerability in D-Link Devices Could Allow Command Injection

CVE-2024-8214

D-linkDns-1209.8CRITICAL

Critical Command Injection Vulnerability in D-Link Devices

CVE-2024-8213

D-linkDns-1209.8CRITICAL

D-Link DNS products vulnerable to command injection via /cgi-bin/hd_config.cgi

CVE-2024-8212

D-linkDns-1209.8CRITICAL

Critical Vulnerability in D-Link Devices Could Allow Remote Command Injection

CVE-2024-8211

D-linkDns-1209.8CRITICAL

Critical Command Injection Vulnerability Affects D-Link Devices Up to 20240814

CVE-2024-8210

D-linkDns-1209.8CRITICAL

D-Link DIR-846W Vulnerable to Remote Command Execution

CVE-2024-44340

D-LinkDir-846w Firmware8.8HIGH

D-Link DIR-846W RCE Vulnerability Discovered in wl(0).(0)_ssid Parameter

CVE-2024-44342

D-LinkDir-846w Firmware9.8CRITICAL

D-Link DIR-846W A1 FW100A43 Vulnerable to Remote Command Execution

CVE-2024-44341

D-LinkDir-846w Firmware9.8CRITICAL

D-Link DIR-846W A1 FW100A43 Vulnerability Affects Remote Command Execution

CVE-2024-41622

D-LinkDir-846w Firmware9.8CRITICAL

August 24

Critical Vulnerability in D-Link Routers and NAS Devices

CVE-2024-8134

D-linkDns-1209.8CRITICAL

D-Linkproducts at risk of command injection vulnerability

CVE-2024-8133

D-linkDns-1209.8CRITICAL

remote command injection vulnerability in webdav_mgr function of HTTP POST Request Handler

CVE-2024-8132

D-linkDns-1209.8CRITICAL

Critical vulnerability in D-Link products remote command injection

CVE-2024-8131

D-linkDns-1209.8CRITICAL

Critical Command Injection Vulnerability in D-Link Devices (Up to 20240814)

CVE-2024-8130

D-linkDns-1209.8CRITICAL

Remotely exploitable command injection vulnerability in D-Link products

CVE-2024-8129

D-linkDns-1209.8CRITICAL

D-Link DNS Devices at Risk of Command Injection Vulnerability

CVE-2024-8128

D-linkDns-1209.8CRITICAL

D-Link Products at Risk of Command Injection Vulnerability

CVE-2024-8127

D-linkDns-1209.8CRITICAL

August 23

Command Execution Vulnerability in D-Link DI8004W

CVE-2024-44382

D-LinkDi 8004w Firmware9.8CRITICAL

Command Execution Vulnerability in jhttpd msp_info_htm Function

CVE-2024-44381

D-LinkDi 8004w Firmware9.8CRITICAL

August 19

Buffer Overflow Vulnerability in DIR-860L v2.03 Could Lead to Crash or Arbitrary Command Execution

CVE-2024-42812

D-Link

August 16

UNSUPPORTED WHEN ASSIGNED: Critical Vulnerability in D-Link Products Could Allow Remote Exploitation

CVE-2024-7849

D-Link

August 15

Critical Vulnerability in D-Link DI-8100 Allows Remote Command Injection

CVE-2024-7833

D-linkDi-81009.8CRITICAL

D-Link Products at Risk of Buffer Overflow Vulnerability

CVE-2024-7832

D-linkDns-1208.8HIGH

UNSUPPORTED WHEN ASSIGNED: Critical Vulnerability Affects D-Link Products Up to 20240814

CVE-2024-7831

D-linkDns-1209.8CRITICAL

Unsupported vulnerabilities in D-Link products due to buffer overflow in cgi_move_photo function

CVE-2024-7830

D-linkDns-1209.8CRITICAL

UNSUPPORTED WHEN ASSIGNED: Buffer Overflow Vulnerability in D-Link Products

CVE-2024-7829

D-linkDns-1209.8CRITICAL

Unsupported Products at Risk of Buffer Overflow Vulnerability

CVE-2024-7828

D-linkDns-1209.8CRITICAL

August 13

Critical Vulnerability in D-Link Devices Could Lead to Command Injection

CVE-2024-7715

D-linkDns-1206.3MEDIUM

August 6

CVE-2024-41616

D-LinkDir-300 Firmware9.8CRITICAL

August 3

Critical Vulnerability in D-Link DI-8100 Could Lead to Remote Command Injection

CVE-2024-7436

D-LinkDi-8100 Firmware8.8HIGH

August 1

Critical Vulnerability in D-Link DIR-600 Could Allow for Remote OS Command Injection

CVE-2024-7357

D-linkDir-600

July 21

D-Link Routers Vulnerable to Authentication Bypass Attack via Capture-replay

CVE-2024-38438

D-linkDsl-2259.8CRITICAL

D-Link Faces Auth Bypass Vulnerability in Smart Home Devices

CVE-2024-38437

D-linkDsl-2259.8CRITICAL

July 19

D-Link Router Vulnerability Could Allow Remote Code Execution

CVE-2024-39962

D-Link

July 8

Remote Command Execution Vulnerability Discovered in D-Link DIR-823X Firmware

CVE-2024-39202

D-LinkDir-823x Ax3000 Firmware8.8HIGH

July 5

Vulnerability in D-Link DAR-7000 Could Lead to Deserialization Attack

CVE-2024-6525

D-linkDar-70008.8HIGH

June 27

SSL Certificate Validation Vulnerability Affects D-Link DIR-1950 Firmware Update

CVE-2024-36755

D-Link

June 17

D-Link Routers Found to Have Undisclosed Factory Backdoor

CVE-2024-6045

D-linkG4038.8HIGH

D-Link Routers Vulnerable to Path Traversal Attacks

CVE-2024-6044

D-linkG4036.5MEDIUM

May 28

Attackers Can Hijack TCP Sessions on D-Link Routers, Leading to Denial of Service

CVE-2023-30309

D-Link

May 23

D-Link D-View Command Injection Remote Code Execution Vulnerability

CVE-2024-5297

D-Link

Uncontrolled Search Path Element Local Privilege Escalation Vulnerability

CVE-2024-5292

D-Link

D-Link D-View QueryDeviceCustomMonitorResult Exposes Remote Code Execution Vulnerability

CVE-2024-5298

D-Link

D-Link G416 Flupl Self Command Injection Remote Code Execution Vulnerability

CVE-2024-5295

D-Link

D-Link D-View Authentication Bypass Vulnerability

CVE-2024-5296

D-Link

Remote Code Execution Vulnerability in D-Link DIR-2640 HTTP Referer Stack-Based Buffer Overflow

CVE-2024-5293

D-Link

D-Link DIR-3040 prog.cgi Web Security Handler Memory Leak Denial-of-Service Vulnerability

CVE-2024-5294

D-linkDir-30404.3MEDIUM

D-Link DIR-2150 GetDeviceSettings Target Command Injection Remote Code Execution Vulnerability

CVE-2024-5291

D-Link

D-Link D-View Executor Monitor Script Remote Code Execution Vulnerability

CVE-2024-5299

D-Link

May 16

Critical Vulnerability in D-Link DAR-7000-40 V31R02B1413C Allowing Remote OS Command Injection

CVE-2024-4965

D-linkDar-7000-406.3MEDIUM

Unrestricted Upload Vulnerability in D-Link DAR-7000-40 V31R02B1413C

CVE-2024-4964

D-linkDar-7000-406.3MEDIUM

Unrestricted File Upload Vulnerability in D-Link DAR-7000-40 V31R02B1413C

CVE-2024-4963

D-linkDar-7000-406.3MEDIUM

Unrestricted File Upload Vulnerability in D-Link DAR-7000-40 V31R02B1413C

CVE-2024-4962

D-linkDar-7000-406.3MEDIUM

Critical Vulnerability in D-Link DAR-7000-40 V31R02B1413C Allows Unrestricted File Upload

CVE-2024-4961

D-linkDar-7000-406.3MEDIUM

Unrestricted File Upload Vulnerability in D-Link DAR-7000-40 V31R02B1413C

CVE-2024-4960

D-linkDar-7000-406.3MEDIUM

May 7

Unauthorized Configuration Changes via DDP Service

CVE-2023-37325

D-linkDap-26225.4MEDIUM

Stack-based Buffer Overflow Remote Code Execution Vulnerability in D-Link DAP-2622 Routers

CVE-2023-35757

D-linkDap-26228.8HIGH

Stack-based Buffer Overflow Remote Code Execution Vulnerability in D-Link DAP-2622 Routers

CVE-2023-35749

D-linkDap-26228.8HIGH

Stack-based Buffer Overflow Remote Code Execution Vulnerability in D-Link DAP-2622 Routers

CVE-2023-35748

D-linkDap-26228.8HIGH

May 3

D-Link DCS-8300LHV2 RTSP ValidateAuthorizationHeader Nonce Stack-Based Buffer Overflow Remote Code Execution Vulnerability

CVE-2023-51624

D-Link

Stack-Based Buffer Overflow Remote Code Execution Vulnerability in D-Link DIR-X3260 Routers

CVE-2023-51615

D-Link

Stack-based Buffer Overflow Remote Code Execution Vulnerability in D-Link DIR-X3260 Routers

CVE-2023-51621

D-Link

Remote Code Execution Vulnerability in D-Link DIR-X3260 Routers

CVE-2023-51613

D-Link

Remote Code Execution Vulnerability in D-Link DIR-X3260 Routers

CVE-2023-51617

D-Link

Hardcoded PIN Authentication Bypass Vulnerability Affects D-Link DCS-8300LHV2 IP Cameras

CVE-2023-51629

D-Link

Stack-based Buffer Overflow Remote Code Execution Vulnerability in D-Link DIR-X3260 Routers

CVE-2023-51623

D-Link

D-Link DCS-8300LHV2 ONVIF Command Injection Remote Code Execution Vulnerability

CVE-2023-51625

D-Link

Stack-based Buffer Overflow Remote Code Execution Vulnerability in D-Link DIR-X3260 Routers

CVE-2023-51620

D-Link

Stack-Based Buffer Overflow Remote Code Execution Vulnerability in D-Link DCS-8300LHV2 IP Cameras

CVE-2023-51628

D-Link

D-Link DCS-8300LHV2 RTSP ValidateAuthorizationHeader Username Stack-Based Buffer Overflow Remote Code Execution Vulnerability

CVE-2023-51626

D-Link

Remote Code Execution Vulnerability in D-Link DIR-X3260 Routers

CVE-2023-51616

D-Link

D-Link DCS-8300LHV2 ONVIF Duration Stack-Based Buffer Overflow Remote Code Execution Vulnerability

CVE-2023-51627

D-Link

Remote Code Execution Vulnerability in D-Link DIR-X3260 Routers

CVE-2023-51619

D-Link

Remote Code Execution Vulnerability in D-Link DIR-X3260 Routers

CVE-2023-51618

D-Link

Stack-based Buffer Overflow Remote Code Execution Vulnerability in D-Link DIR-X3260 Routers

CVE-2023-51622

D-Link

Remote Code Execution Vulnerability in D-Link DIR-X3260 Routers

CVE-2023-51614

D-Link

D-Link DIR-X3260 SetSysEmailSettings SMTPServerAddress Command Injection Remote Code Execution Vulnerability

CVE-2023-44427

D-linkDir-x32608HIGH

D-Link DIR-X3260 SetSysEmailSettings AccountPassword Command Injection Remote Code Execution Vulnerability

CVE-2023-44426

D-linkDir-x32608HIGH

D-Link DIR-X3260 SetSysEmailSettings AccountName Command Injection Remote Code Execution Vulnerability

CVE-2023-44425

D-linkDir-x32608HIGH

EmailTo Command Injection Remote Code Execution Vulnerability

CVE-2023-44424

D-linkDir-x32608HIGH

D-Link DIR-X3260 SetTriggerPPPoEValidate Password Command Injection Remote Code Execution Vulnerability

CVE-2023-44423

D-linkDir-x32608HIGH

Email From Command Injection Remote Code Execution Vulnerability

CVE-2023-44422

D-linkDir-x32608HIGH

D-Link DIR-X3260 SetTriggerPPPoEValidate Username Command Injection Remote Code Execution Vulnerability

CVE-2023-44421

D-linkDir-x32608HIGH

Incorrect Implementation of Authentication Algorithm Authentication Bypass Vulnerability

CVE-2023-44420

D-linkDir-x32608.8HIGH