dlink

1,708 tracked vulnerabilities.

CVE-2024-8127 MEDIUM
D-Link DNS/NAS Firmware - OS Command Injection via cgi_unzip Path Parameter
Aug 24, 2024
CVSS 6.3
EPSS 0.07
CVE-2024-44382 CRITICAL
D-Link DI_8004W 16.07.26A1 - OS Command Injection via jhttpd upgrade_filter_asp
Aug 23, 2024
CVSS 9.8
EPSS 0.01
CVE-2024-44381 CRITICAL
D-Link DI_8004W 16.07.26A1 - OS Command Injection in jhttpd msp_info_htm Function
Aug 23, 2024
CVSS 9.8
EPSS 0.01
CVE-2024-42812 CRITICAL
D-Link DIR-860L v2.03 - Buffer Overflow
Aug 19, 2024
CVSS 9.8
EPSS 0.16
CVE-2024-7833 MEDIUM
D-Link DI-8100 16.07 - Remote Command Injection via upgrade_filter.asp Path Parameter
Aug 15, 2024
CVSS 6.3
EPSS 0.05
CVE-2024-7832 HIGH
D-Link DNS/NAS Firmware - Buffer Overflow in cgi_get_fullscreen_photos
Aug 15, 2024
CVSS 8.8
EPSS 0.02
CVE-2024-7831 HIGH
D-Link DNS and DNR Series Firmware - Buffer Overflow in cgi_get_cooliris via Path Argument
Aug 15, 2024
CVSS 8.8
EPSS 0.02
CVE-2024-7830 HIGH
D-Link DNS and DNR Series Firmware - Buffer Overflow via cgi_move_photo photo_name Parameter
Aug 15, 2024
CVSS 8.8
EPSS 0.02
CVE-2024-7829 HIGH
D-Link DNS/NAS Firmware - Buffer Overflow via cgi_del_photo current_path Parameter
Aug 15, 2024
CVSS 8.8
EPSS 0.02
CVE-2024-7828 HIGH
D-Link DNS/NAS Firmware - Buffer Overflow in photocenter_mgr.cgi cgi_set_cover Function
Aug 15, 2024
CVSS 8.8
EPSS 0.16
CVE-2024-41616 CRITICAL
D-Link DIR-300 REVA - Info Disclosure
Aug 06, 2024
CVSS 9.8
EPSS 0.01
CVE-2024-7436 MEDIUM
D-Link DI-8100 16.07 - Remote Command Injection via msp_info.htm cmd Parameter
Aug 03, 2024
CVSS 6.3
EPSS 0.08
CVE-2024-7357 MEDIUM
D-Link DIR-600 Firmware < 2.18 - OS Command Injection via soapcgi_main Service Parameter
Aug 01, 2024
CVSS 6.3
EPSS 0.06
CVE-2024-41611 CRITICAL
D-Link DIR-860L REVA FIRMWARE PATCH 1.10..B04 - Use of Hard-coded Credentials in Telnet Service
Jul 30, 2024
CVSS 9.8
EPSS 0.01
CVE-2024-41610 CRITICAL
D-Link DIR-820LW REVB Firmware 2.03.B01_TC - Use of Hard-coded Credentials in Telnet Service
Jul 30, 2024
CVSS 9.8
EPSS 0.01
CVE-2024-38438 CRITICAL
D-Link - Auth Bypass
Jul 21, 2024
CVSS 9.8
EPSS 0.01
CVE-2024-38437 CRITICAL
D-Link DSL-225 Firmware - Authentication Bypass via Alternate Path
Jul 21, 2024
CVSS 9.8
EPSS 0.01
CVE-2024-39962 CRITICAL
D-Link DIR-823X AX3000 Dual-Band Gigabit Wireless Router v21_D240126 - Remote Code Execution via ntp_zone_val Parameter
Jul 19, 2024
CVSS 9.8
EPSS 0.02
CVE-2024-40505 CRITICAL
D-Link DAP-1650 <v.1.03 - Path Traversal
Jul 16, 2024
CVSS 9.3
EPSS 0.00
CVE-2024-39202 HIGH
D-Link DIR-823X AX3000 Firmware 240126 - Remote Code Execution via dhcpd_startip Parameter
Jul 08, 2024
CVSS 8.8
EPSS 0.01
CVE-2024-6525 LOW
D-Link DAR-7000 <20230922 - Deserialization
Jul 05, 2024
CVSS 2.7
EPSS 0.03
CVE-2024-36755 MEDIUM
D-Link DIR-1950 <v1.11B03 - Info Disclosure
Jun 27, 2024
CVSS 6.8
EPSS 0.00
CVE-2024-37630 HIGH
D-Link DIR-605L v2.13B01 - Use of Hard-coded Credentials in /etc/passwd
Jun 13, 2024
CVSS 8.8
EPSS 0.00
CVE-2024-5299 HIGH
D-Link D-View 8 - Remote Code Execution via execMonitorScript Method
May 23, 2024
CVSS 8.8
EPSS 0.02
CVE-2024-5298 HIGH
D-Link D-View 8 - Remote Code Execution via queryDeviceCustomMonitorResult Method
May 23, 2024
CVSS 8.8
EPSS 0.02