Dlink

Dir-823g Firmware

56 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2022-43109

Exploit
  • EPSS 7.96%
  • Veröffentlicht 03.11.2022 14:15:33
  • Zuletzt bearbeitet 05.05.2025 13:15:48

D-Link DIR-823G v1.0.2 was found to contain a command injection vulnerability in the function SetNetworkTomographySettings. This vulnerability allows attackers to execute arbitrary commands via a crafted packet.

9.8

CVE-2021-43474

Exploit
  • EPSS 3.37%
  • Veröffentlicht 07.04.2022 22:15:07
  • Zuletzt bearbeitet 21.11.2024 06:29:17

An Access Control vulnerability exists in D-Link DIR-823G REVA1 1.02B05 (Lastest) via any parameter in the HNAP1 function

9.8

CVE-2020-25368

Exploit
  • EPSS 34.4%
  • Veröffentlicht 04.11.2021 11:15:07
  • Zuletzt bearbeitet 21.11.2024 05:17:54

A command injection vulnerability was discovered in the HNAP1 protocol in D-Link DIR-823G devices with firmware V1.0.2B05. An attacker is able to execute arbitrary web scripts via shell metacharacters in the PrivateLogin field to Login.

9.1

CVE-2020-25366

Exploit
  • EPSS 0.55%
  • Veröffentlicht 04.11.2021 11:15:07
  • Zuletzt bearbeitet 21.11.2024 05:17:54

An issue in the component /cgi-bin/upload_firmware.cgi of D-Link DIR-823G REVA1 1.02B05 allows attackers to cause a denial of service (DoS) via unspecified vectors.

9.8

CVE-2020-25367

Exploit
  • EPSS 23.95%
  • Veröffentlicht 04.11.2021 10:15:07
  • Zuletzt bearbeitet 21.11.2024 05:17:54

A command injection vulnerability was discovered in the HNAP1 protocol in D-Link DIR-823G devices with firmware V1.0.2B05. An attacker is able to execute arbitrary web scripts via shell metacharacters in the Captcha field to Login.

9

CVE-2019-15530

Exploit
  • EPSS 3.08%
  • Veröffentlicht 23.08.2019 17:15:13
  • Zuletzt bearbeitet 21.11.2024 04:28:56

An issue was discovered on D-Link DIR-823G devices with firmware V1.0.2B05. There is a command injection in HNAP1 (exploitable with Authentication) via shell metacharacters in the LoginPassword field to Login.

9

CVE-2019-15529

Exploit
  • EPSS 12.09%
  • Veröffentlicht 23.08.2019 17:15:13
  • Zuletzt bearbeitet 21.11.2024 04:28:56

An issue was discovered on D-Link DIR-823G devices with firmware V1.0.2B05. There is a command injection in HNAP1 (exploitable with Authentication) via shell metacharacters in the Username field to Login.

9

CVE-2019-15528

Exploit
  • EPSS 3.08%
  • Veröffentlicht 23.08.2019 17:15:13
  • Zuletzt bearbeitet 21.11.2024 04:28:56

An issue was discovered on D-Link DIR-823G devices with firmware V1.0.2B05. There is a command injection in HNAP1 (exploitable with Authentication) via shell metacharacters in the Interface field to SetStaticRouteSettings.

9

CVE-2019-15527

Exploit
  • EPSS 3.59%
  • Veröffentlicht 23.08.2019 17:15:13
  • Zuletzt bearbeitet 21.11.2024 04:28:56

An issue was discovered on D-Link DIR-823G devices with firmware V1.0.2B05. There is a command injection in HNAP1 (exploitable with Authentication) via shell metacharacters in the MaxIdTime field to SetWanSettings.

9

CVE-2019-15526

Exploit
  • EPSS 3.08%
  • Veröffentlicht 23.08.2019 17:15:13
  • Zuletzt bearbeitet 21.11.2024 04:28:56

An issue was discovered on D-Link DIR-823G devices with firmware V1.0.2B05. There is a command injection in HNAP1 (exploitable with Authentication) via shell metacharacters in the Type field to SetWanSettings, a related issue to CVE-2019-13482.