Dlink

Dir-882 Firmware

30 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2025-60701

Exploit
  • EPSS 0.13%
  • Veröffentlicht 13.11.2025 18:15:54
  • Zuletzt bearbeitet 17.11.2025 12:28:31

A command injection vulnerability exists in the D-Link DIR-882 Router firmware DIR882A1_FW102B02 within the `prog.cgi` and `rc` binaries. The `sub_433188` function in `prog.cgi` stores user-supplied email configuration parameters (`EmailFrom`, `Email...

6.5

CVE-2025-60700

Exploit
  • EPSS 0.13%
  • Veröffentlicht 13.11.2025 18:15:54
  • Zuletzt bearbeitet 17.11.2025 12:28:40

A command injection vulnerability exists in the D-Link DIR-882 Router firmware DIR882A1_FW102B02 within the `prog.cgi` and `librcm.so` binaries. The `sub_4455BC` function in `prog.cgi` stores user-supplied `SetDMZSettings/IPAddress` values in NVRAM v...

7.3

CVE-2025-60698

Exploit
  • EPSS 0.37%
  • Veröffentlicht 13.11.2025 00:00:00
  • Zuletzt bearbeitet 17.11.2025 12:28:54

A command injection vulnerability exists in the D-Link DIR-882 Router firmware DIR882A1_FW102B02 within the `prog.cgi` and `rc` binaries. The `sub_432F60` function in `prog.cgi` stores user-supplied `SetSysLogSettings/IPAddress` values in NVRAM via `...

7.3

CVE-2025-60697

Exploit
  • EPSS 0.37%
  • Veröffentlicht 13.11.2025 00:00:00
  • Zuletzt bearbeitet 17.11.2025 12:29:07

A command injection vulnerability exists in the D-Link DIR-882 Router firmware DIR882A1_FW102B02 within the `prog.cgi` and `rc` binaries. The `sub_4438A4` function in `prog.cgi` stores user-supplied DDNS parameters (`ServerAddress` and `Hostname`) in...

8

CVE-2024-48638

  • EPSS 0.78%
  • Veröffentlicht 17.10.2024 18:15:08
  • Zuletzt bearbeitet 07.05.2025 15:50:44

D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command injection vulnerability via the SubnetMask parameter in the SetGuestZoneRouterSettings function. This vulnerability allows attackers to execute arbitrary OS com...

8

CVE-2024-48637

  • EPSS 0.78%
  • Veröffentlicht 17.10.2024 18:15:08
  • Zuletzt bearbeitet 07.05.2025 16:06:34

D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command injection vulnerability via the VLANID:1/VID parameter in the SetVLANSettings function. This vulnerability allows attackers to execute arbitrary OS commands via...

8

CVE-2024-48636

  • EPSS 0.78%
  • Veröffentlicht 17.10.2024 18:15:08
  • Zuletzt bearbeitet 07.05.2025 16:06:29

D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command injection vulnerability via the VLANID:0/VID parameter in the SetVLANSettings function. This vulnerability allows attackers to execute arbitrary OS commands via...

8

CVE-2024-48635

  • EPSS 0.78%
  • Veröffentlicht 17.10.2024 18:15:08
  • Zuletzt bearbeitet 07.05.2025 16:06:41

D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command injection vulnerability via the VLANID:2/VID parameter in the SetVLANSettings function. This vulnerability allows attackers to execute arbitrary OS commands via...

8

CVE-2024-48634

  • EPSS 0.17%
  • Veröffentlicht 17.10.2024 18:15:08
  • Zuletzt bearbeitet 07.05.2025 16:06:45

D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command injection vulnerability via the key parameter in the SetWLanRadioSecurity function. This vulnerability allows attackers to execute arbitrary OS commands via a c...

8

CVE-2024-48633

  • EPSS 0.19%
  • Veröffentlicht 17.10.2024 18:15:08
  • Zuletzt bearbeitet 07.05.2025 16:06:48

D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain multiple command injection vulnerabilities via the ExternalPort, InternalPort, ProtocolNumber, and LocalIPAddress parameters in the SetVirtualServerSettings function. Thi...