Dlink

Dir-823 Firmware

10 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2024-27655

Exploit
  • EPSS 2.63%
  • Published 29.02.2024 20:15:41
  • Last modified 21.04.2025 21:59:04

D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow via the SOAPACTION parameter. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input, and possibly remote code execution.

8.8

CVE-2024-27656

Exploit
  • EPSS 2.63%
  • Published 29.02.2024 20:15:41
  • Last modified 21.04.2025 21:58:57

D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow via the Cookie parameter. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input, and possibly remote code execution.

8.8

CVE-2024-27657

Exploit
  • EPSS 2.63%
  • Published 29.02.2024 20:15:41
  • Last modified 21.04.2025 21:58:53

D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow via the User-Agent parameter. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input, and possibly remote code execution.

6.5

CVE-2024-27658

Exploit
  • EPSS 0.04%
  • Published 29.02.2024 20:15:41
  • Last modified 21.04.2025 21:58:49

D-Link DIR-823G A1V1.0.2B05 was discovered to contain Null-pointer dereferences in sub_4484A8(). This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input.

6.5

CVE-2024-27659

Exploit
  • EPSS 0.05%
  • Published 29.02.2024 20:15:41
  • Last modified 17.03.2025 16:06:46

D-Link DIR-823G A1V1.0.2B05 was discovered to contain Null-pointer dereferences in sub_42AF30(). This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input.

6.5

CVE-2024-27661

Exploit
  • EPSS 0.05%
  • Published 29.02.2024 20:15:41
  • Last modified 17.03.2025 16:06:18

D-Link DIR-823G A1V1.0.2B05 was discovered to contain Null-pointer dereferences in sub_4484A8(). This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input.

6.5

CVE-2024-27662

Exploit
  • EPSS 0.05%
  • Published 29.02.2024 20:15:41
  • Last modified 15.04.2025 14:21:43

D-Link DIR-823G A1V1.0.2B05 was discovered to contain a Null-pointer dereferences in sub_4110f4(). This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input.

7.5

CVE-2019-20213

  • EPSS 0.84%
  • Published 02.01.2020 14:16:36
  • Last modified 21.11.2024 04:38:13

D-Link DIR-859 routers before v1.07b03_beta allow Unauthenticated Information Disclosure via the AUTHORIZED_GROUP=1%0a value, as demonstrated by vpnconfig.php.

10

CVE-2019-17621

Warning Exploit
  • EPSS 93.19%
  • Published 30.12.2019 17:15:19
  • Last modified 03.04.2025 20:05:08

The UPnP endpoint URL /gena.cgi in the D-Link DIR-859 Wi-Fi router 1.05 and 1.06B01 Beta01 allows an Unauthenticated remote attacker to execute system commands as root, by sending a specially crafted HTTP SUBSCRIBE request to the UPnP service when co...

10

CVE-2016-6563

Exploit
  • EPSS 87.97%
  • Published 13.07.2018 20:29:01
  • Last modified 21.11.2024 02:56:21

Processing malformed SOAP messages when performing the HNAP Login action causes a buffer overflow in the stack in some D-Link DIR routers. The vulnerable XML fields within the SOAP body are: Action, Username, LoginPassword, and Captcha. The following...