Dlink

Dir-882 Firmware

31 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.2

CVE-2026-5844

Exploit
  • EPSS 0.44%
  • Veröffentlicht 09.04.2026 04:45:13
  • Zuletzt bearbeitet 30.04.2026 16:34:45

A vulnerability was found in D-Link DIR-882 1.01B02. Impacted is the function sprintf of the file prog.cgi of the component HNAP1 SetNetworkSettings Handler. The manipulation of the argument IPAddress results in os command injection. The attack may b...

6.5

CVE-2025-60701

Exploit
  • EPSS 0.35%
  • Veröffentlicht 13.11.2025 18:15:54
  • Zuletzt bearbeitet 17.11.2025 12:28:31

A command injection vulnerability exists in the D-Link DIR-882 Router firmware DIR882A1_FW102B02 within the `prog.cgi` and `rc` binaries. The `sub_433188` function in `prog.cgi` stores user-supplied email configuration parameters (`EmailFrom`, `Email...

6.5

CVE-2025-60700

Exploit
  • EPSS 0.35%
  • Veröffentlicht 13.11.2025 18:15:54
  • Zuletzt bearbeitet 17.11.2025 12:28:40

A command injection vulnerability exists in the D-Link DIR-882 Router firmware DIR882A1_FW102B02 within the `prog.cgi` and `librcm.so` binaries. The `sub_4455BC` function in `prog.cgi` stores user-supplied `SetDMZSettings/IPAddress` values in NVRAM v...

7.3

CVE-2025-60698

Exploit
  • EPSS 0.96%
  • Veröffentlicht 13.11.2025 00:00:00
  • Zuletzt bearbeitet 17.11.2025 12:28:54

A command injection vulnerability exists in the D-Link DIR-882 Router firmware DIR882A1_FW102B02 within the `prog.cgi` and `rc` binaries. The `sub_432F60` function in `prog.cgi` stores user-supplied `SetSysLogSettings/IPAddress` values in NVRAM via `...

7.3

CVE-2025-60697

Exploit
  • EPSS 0.96%
  • Veröffentlicht 13.11.2025 00:00:00
  • Zuletzt bearbeitet 17.11.2025 12:29:07

A command injection vulnerability exists in the D-Link DIR-882 Router firmware DIR882A1_FW102B02 within the `prog.cgi` and `rc` binaries. The `sub_4438A4` function in `prog.cgi` stores user-supplied DDNS parameters (`ServerAddress` and `Hostname`) in...

8

CVE-2024-48638

  • EPSS 0.82%
  • Veröffentlicht 17.10.2024 18:15:08
  • Zuletzt bearbeitet 07.05.2025 15:50:44

D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command injection vulnerability via the SubnetMask parameter in the SetGuestZoneRouterSettings function. This vulnerability allows attackers to execute arbitrary OS com...

8

CVE-2024-48637

  • EPSS 0.82%
  • Veröffentlicht 17.10.2024 18:15:08
  • Zuletzt bearbeitet 07.05.2025 16:06:34

D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command injection vulnerability via the VLANID:1/VID parameter in the SetVLANSettings function. This vulnerability allows attackers to execute arbitrary OS commands via...

8

CVE-2024-48636

  • EPSS 0.82%
  • Veröffentlicht 17.10.2024 18:15:08
  • Zuletzt bearbeitet 07.05.2025 16:06:29

D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command injection vulnerability via the VLANID:0/VID parameter in the SetVLANSettings function. This vulnerability allows attackers to execute arbitrary OS commands via...

8

CVE-2024-48635

  • EPSS 0.82%
  • Veröffentlicht 17.10.2024 18:15:08
  • Zuletzt bearbeitet 07.05.2025 16:06:41

D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command injection vulnerability via the VLANID:2/VID parameter in the SetVLANSettings function. This vulnerability allows attackers to execute arbitrary OS commands via...

8

CVE-2024-48634

  • EPSS 3.69%
  • Veröffentlicht 17.10.2024 18:15:08
  • Zuletzt bearbeitet 07.05.2025 16:06:45

D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command injection vulnerability via the key parameter in the SetWLanRadioSecurity function. This vulnerability allows attackers to execute arbitrary OS commands via a c...