Dlink

Dir-806 Firmware

6 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2025-4340

Exploit
  • EPSS 0.06%
  • Published 06.05.2025 08:15:18
  • Last modified 13.05.2025 20:25:29

A vulnerability classified as critical has been found in D-Link DIR-890L and DIR-806A1 up to 100CNb11/108B03. Affected is the function sub_175C8 of the file /htdocs/soap.cgi. The manipulation leads to command injection. It is possible to launch the a...

9.8

CVE-2023-43130

Exploit
  • EPSS 1.09%
  • Published 22.09.2023 23:15:10
  • Last modified 21.11.2024 08:23:44

D-LINK DIR-806 1200M11AC wireless router DIR806A1_FW100CNb11 is vulnerable to command injection.

9.8

CVE-2023-43129

Exploit
  • EPSS 1.09%
  • Published 22.09.2023 23:15:09
  • Last modified 21.11.2024 08:23:44

D-LINK DIR-806 1200M11AC wireless router DIR806A1_FW100CNb11 is vulnerable to command injection due to lax filtering of REMOTE_PORT parameters.

9.8

CVE-2023-43128

Exploit
  • EPSS 1.09%
  • Published 21.09.2023 23:15:12
  • Last modified 21.11.2024 08:23:44

D-LINK DIR-806 1200M11AC wireless router DIR806A1_FW100CNb11 is vulnerable to command injection due to lax filtering of HTTP_ST parameters.

10

CVE-2019-10891

Exploit
  • EPSS 74.96%
  • Published 06.09.2019 20:15:11
  • Last modified 09.01.2025 18:15:23

An issue was discovered in D-Link DIR-806 devices. There is a command injection in function hnap_main, which calls system() without checking the parameter that can be controlled by user, and finally allows remote attackers to execute arbitrary shell ...

10

CVE-2019-10892

Exploit
  • EPSS 0.86%
  • Published 06.09.2019 20:15:11
  • Last modified 21.11.2024 04:20:03

An issue was discovered in D-Link DIR-806 devices. There is a stack-based buffer overflow in function hnap_main at /htdocs/cgibin. The function will call sprintf without checking the length of strings in parameters given by HTTP header and can be con...