Dlink

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2022-28956 1Dlink 1Dir 816l Firmware Jun 17, 2026 May 18, 2022 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 An issue in the getcfg.php component of D-Link DIR816L_FW206b01 allows attackers to access the device via a crafted payload.
CVE-2022-28955 1Dlink 1Dir 816l Firmware Jun 17, 2026 May 18, 2022 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 An access control issue in D-Link DIR816L_FW206b01 allows unauthenticated attackers to access folders folder_view.php and category_view.php.
CVE-2022-29332 1Dlink 1Dir 825 Firmware Jun 17, 2026 May 17, 2022 N/A· v4 6.5 MEDIUM· v3 4.0 MEDIUM· v2 D-LINK DIR-825 AC1200 R2 is vulnerable to Directory Traversal. An attacker could use the "../../../../" setting of the FTP server folder to set the router's root folder for FTP access. This allows you to access the entir...Show more D-LINK DIR-825 AC1200 R2 is vulnerable to Directory Traversal. An attacker could use the "../../../../" setting of the FTP server folder to set the router's root folder for FTP access. This allows you to access the entire router file system via the FTP server.Show less
CVE-2022-29329 1Dlink 1Dap 1330 Firmware Jun 17, 2026 May 10, 2022 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 D-Link DAP-1330_OSS-firmware_1.00b21 was discovered to contain a heap overflow via the devicename parameter in /goform/setDeviceSettings.
CVE-2022-29328 1Dlink 1Dap 1330 Firmware Jun 17, 2026 May 10, 2022 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 D-Link DAP-1330_OSS-firmware_1.00b21 was discovered to contain a stack overflow via the function checkvalidupgrade.
CVE-2022-29327 1Dlink 1Dir 816 Firmware Jun 17, 2026 May 10, 2022 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 D-Link DIR-816 A2_v1.10CNB04 was discovered to contain a stack overflow via the urladd parameter in /goform/websURLFilterAddDel.
CVE-2022-29326 1Dlink 1Dir 816 Firmware Jun 17, 2026 May 10, 2022 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 D-Link DIR-816 A2_v1.10CNB04 was discovered to contain a stack overflow via the addhostfilter parameter in /goform/websHostFilter.
CVE-2022-29325 1Dlink 1Dir 816 Firmware Jun 17, 2026 May 10, 2022 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 D-Link DIR-816 A2_v1.10CNB04 was discovered to contain a stack overflow via the addurlfilter parameter in /goform/websURLFilter.
CVE-2022-29324 1Dlink 1Dir 816 Firmware Jun 17, 2026 May 10, 2022 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 D-Link DIR-816 A2_v1.10CNB04 was discovered to contain a stack overflow via the proto parameter in /goform/form2IPQoSTcAdd.
CVE-2022-29323 1Dlink 1Dir 816 Firmware Jun 17, 2026 May 10, 2022 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 D-Link DIR-816 A2_v1.10CNB04 was discovered to contain a stack overflow via the MAC parameter in /goform/editassignment.
CVE-2022-29322 1Dlink 1Dir 816 Firmware Jun 17, 2026 May 10, 2022 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 D-Link DIR-816 A2_v1.10CNB04 was discovered to contain a stack overflow via the IPADDR and nvmacaddr parameters in /goform/form2Dhcpip.
CVE-2022-29321 1Dlink 1Dir 816 Firmware Jun 17, 2026 May 10, 2022 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 D-Link DIR-816 A2_v1.10CNB04 was discovered to contain a stack overflow via the lanip parameter in /goform/setNetworkLan.
CVE-2022-28915 1Dlink 1Dir 816 Firmware Jun 17, 2026 May 10, 2022 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 D-Link DIR-816 A2_v1.10CNB04 was discovered to contain a command injection vulnerability via the admuser and admpass parameters in /goform/setSysAdm.
CVE-2022-28901 1Dlink 1Dir 882 Firmware Jun 17, 2026 May 10, 2022 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 A command injection vulnerability in the component /SetTriggerLEDBlink/Blink of D-Link DIR882 DIR882A1_FW130B06 allows attackers to escalate privileges to root via a crafted payload.
CVE-2022-28896 1Dlink 1Dir 882 Firmware Jun 17, 2026 May 10, 2022 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 A command injection vulnerability in the component /setnetworksettings/SubnetMask of D-Link DIR882 DIR882A1_FW130B06 allows attackers to escalate privileges to root via a crafted payload.
CVE-2022-28895 1Dlink 1Dir 882 Firmware Jun 17, 2026 May 10, 2022 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 A command injection vulnerability in the component /setnetworksettings/IPAddress of D-Link DIR882 DIR882A1_FW130B06 allows attackers to escalate privileges to root via a crafted payload.
CVE-2022-28573 1Dlink 1Dir 823 Pro Firmware Jun 17, 2026 May 2, 2022 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 D-Link DIR-823-Pro v1.0.2 was discovered to contain a command injection vulnerability in the function SetNTPserverSeting. This vulnerability allows attackers to execute arbitrary commands via the system_time_timezone par...Show more D-Link DIR-823-Pro v1.0.2 was discovered to contain a command injection vulnerability in the function SetNTPserverSeting. This vulnerability allows attackers to execute arbitrary commands via the system_time_timezone parameter.Show less
CVE-2022-28571 1Dlink 1Dir 882 Firmware Jun 17, 2026 May 2, 2022 N/A· v4 9.8 CRITICAL· v3 5.8 MEDIUM· v2 D-link 882 DIR882A1_FW130B06 was discovered to contain a command injection vulnerability in`/usr/bin/cli.
CVE-2021-46442 1Dlink 1Dir 825 Firmware Jun 17, 2026 Apr 27, 2022 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 In the "webupg" binary of D-Link DIR-825 G1, attackers can bypass authentication through parameters "autoupgrade.asp", and perform functions such as downloading configuration files and updating firmware without authoriza...Show more In the "webupg" binary of D-Link DIR-825 G1, attackers can bypass authentication through parameters "autoupgrade.asp", and perform functions such as downloading configuration files and updating firmware without authorization.Show less
CVE-2021-46441 1Dlink 1Dir 825 Firmware Jun 17, 2026 Apr 27, 2022 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 In the "webupg" binary of D-Link DIR-825 G1, because of the lack of parameter verification, attackers can use "cmd" parameters to execute arbitrary system commands after obtaining authorization.

Previous 1...606162...86 Next