CVE-2022-44808
- EPSS 3.83%
- Veröffentlicht 22.11.2022 15:15:13
- Zuletzt bearbeitet 25.04.2025 21:15:35
A command injection vulnerability has been found on D-Link DIR-823G devices with firmware version 1.02B03 that allows an attacker to execute arbitrary operating system commands through well-designed /HNAP1 requests. Before the HNAP API function can p...
CVE-2022-44201
- EPSS 1.23%
- Veröffentlicht 22.11.2022 15:15:12
- Zuletzt bearbeitet 29.04.2025 04:15:29
D-Link DIR823G 1.02B05 is vulnerable to Commad Injection.
CVE-2022-43109
- EPSS 3.74%
- Veröffentlicht 03.11.2022 14:15:33
- Zuletzt bearbeitet 05.05.2025 13:15:48
D-Link DIR-823G v1.0.2 was found to contain a command injection vulnerability in the function SetNetworkTomographySettings. This vulnerability allows attackers to execute arbitrary commands via a crafted packet.
CVE-2021-43474
- EPSS 3.08%
- Veröffentlicht 07.04.2022 22:15:07
- Zuletzt bearbeitet 21.11.2024 06:29:17
An Access Control vulnerability exists in D-Link DIR-823G REVA1 1.02B05 (Lastest) via any parameter in the HNAP1 function
CVE-2020-25368
- EPSS 10.3%
- Veröffentlicht 04.11.2021 11:15:07
- Zuletzt bearbeitet 09.07.2026 00:17:01
A command injection vulnerability was discovered in the HNAP1 protocol in D-Link DIR-823G devices with firmware V1.0.2B05. An attacker is able to execute arbitrary web scripts via shell metacharacters in the PrivateLogin field to Login.
CVE-2020-25366
- EPSS 2.38%
- Veröffentlicht 04.11.2021 11:15:07
- Zuletzt bearbeitet 09.07.2026 00:17:01
An issue in the component /cgi-bin/upload_firmware.cgi of D-Link DIR-823G REVA1 1.02B05 allows attackers to cause a denial of service (DoS) via unspecified vectors.
CVE-2020-25367
- EPSS 10.3%
- Veröffentlicht 04.11.2021 10:15:07
- Zuletzt bearbeitet 09.07.2026 00:17:01
A command injection vulnerability was discovered in the HNAP1 protocol in D-Link DIR-823G devices with firmware V1.0.2B05. An attacker is able to execute arbitrary web scripts via shell metacharacters in the Captcha field to Login.
- EPSS 4.26%
- Veröffentlicht 23.08.2019 17:15:13
- Zuletzt bearbeitet 21.11.2024 04:28:56
An issue was discovered on D-Link DIR-823G devices with firmware V1.0.2B05. There is a command injection in HNAP1 (exploitable with Authentication) via shell metacharacters in the LoginPassword field to Login.
- EPSS 7.71%
- Veröffentlicht 23.08.2019 17:15:13
- Zuletzt bearbeitet 21.11.2024 04:28:56
An issue was discovered on D-Link DIR-823G devices with firmware V1.0.2B05. There is a command injection in HNAP1 (exploitable with Authentication) via shell metacharacters in the Username field to Login.
- EPSS 4.11%
- Veröffentlicht 23.08.2019 17:15:13
- Zuletzt bearbeitet 21.11.2024 04:28:56
An issue was discovered on D-Link DIR-823G devices with firmware V1.0.2B05. There is a command injection in HNAP1 (exploitable with Authentication) via shell metacharacters in the Interface field to SetStaticRouteSettings.