DIR882
by Dlink
CVEs (41)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-48631 | 0.00 | — | 0.02 | Oct 17, 2024 | D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command injection vulnerability via the SSID parameter in the SetWLanRadioSettings function. This vulnerability allows attackers to execute arbitrary OS commands via a crafted POST request. | |||
| CVE-2024-48630 | 0.00 | — | 0.02 | Oct 17, 2024 | D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command injection vulnerability via the MacAddress parameter in the SetMACFilters2 function. This vulnerability allows attackers to execute arbitrary OS commands via a crafted POST request. | |||
| CVE-2024-48638 | 0.00 | — | 0.02 | Oct 17, 2024 | D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command injection vulnerability via the SubnetMask parameter in the SetGuestZoneRouterSettings function. This vulnerability allows attackers to execute arbitrary OS commands via a crafted POST… | |||
| CVE-2024-48632 | 0.00 | — | 0.02 | Oct 17, 2024 | D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain multiple command injection vulnerabilities via the LocalIPAddress, TCPPorts, and UDPPorts parameters in the SetPortForwardingSettings function. This vulnerability allows attackers to execute… | |||
| CVE-2023-24330 | 0.00 | — | 0.01 | Feb 21, 2024 | Command Injection vulnerability in D-Link Dir 882 with firmware version DIR882A1_FW130B06 allows attackers to run arbitrary commands via crafted POST request to /HNAP1/. | |||
| CVE-2024-22751 | 0.00 | — | 0.01 | Jan 24, 2024 | D-Link DIR-882 DIR882A1_FW130B06 was discovered to contain a stack overflow via the sub_477AA0 function. | |||
| CVE-2023-24797 | 0.00 | — | 0.01 | Apr 7, 2023 | D-Link DIR882 DIR882A1_FW110B02 was discovered to contain a stack overflow in the sub_48AC20 function. This vulnerability allows attackers to cause a Denial of Service (DoS) or execute arbitrary code via a crafted payload. | |||
| CVE-2023-26925 | 0.00 | — | 0.01 | Mar 31, 2023 | An information disclosure vulnerability exists in the Syslog functionality of D-LINK DIR-882 1.30. A specially crafted network request can lead to the disclosure of sensitive information. | |||
| CVE-2022-46568 | 0.00 | — | 0.01 | Dec 23, 2022 | D-Link DIR-882 DIR882A1_FW130B06, DIR-878 DIR_878_FW1.30B08 was discovered to contain a stack overflow via the AccountPassword parameter in the SetSysEmailSettings module. | |||
| CVE-2022-46569 | 0.00 | — | 0.02 | Dec 23, 2022 | D-Link DIR-882 DIR882A1_FW130B06, DIR-878 DIR_878_FW1.30B08 was discovered to contain a stack overflow via the Key parameter in the SetWLanRadioSecurity module. | |||
| CVE-2022-46563 | 0.00 | — | 0.01 | Dec 23, 2022 | D-Link DIR-882 DIR882A1_FW130B06, DIR-878 DIR_878_FW1.30B08 was discovered to contain a stack overflow via the Password parameter in the SetDynamicDNSSettings module. | |||
| CVE-2022-46562 | 0.00 | — | 0.01 | Dec 23, 2022 | D-Link DIR-882 DIR882A1_FW130B06, DIR-878 DIR_878_FW1.30B08 was discovered to contain a stack overflow via the PSK parameter in the SetQuickVPNSettings module. | |||
| CVE-2022-46570 | 0.00 | — | 0.01 | Dec 23, 2022 | D-Link DIR-882 DIR882A1_FW130B06, DIR-878 DIR_878_FW1.30B08 was discovered to contain a stack overflow via the Password parameter in the SetWan3Settings module. | |||
| CVE-2022-46561 | 0.00 | — | 0.01 | Dec 23, 2022 | D-Link DIR-882 DIR882A1_FW130B06, DIR-878 DIR_878_FW1.30B08 was discovered to contain a stack overflow via the Password parameter in the SetWanSettings module. | |||
| CVE-2022-46566 | 0.00 | — | 0.01 | Dec 23, 2022 | D-Link DIR-882 DIR882A1_FW130B06, DIR-878 DIR_878_FW1.30B08 was discovered to contain a stack overflow via the Password parameter in the SetQuickVPNSettings module. | |||
| CVE-2022-46560 | 0.00 | — | 0.01 | Dec 23, 2022 | D-Link DIR-882 DIR882A1_FW130B06, DIR-878 DIR_878_FW1.30B08 was discovered to contain a stack overflow via the Password parameter in the SetWan2Settings module. | |||
| CVE-2022-44804 | 0.00 | — | 0.01 | Nov 22, 2022 | D-Link DIR-882 1.10B02 and1.20B06 is vulnerable to Buffer Overflow via the websRedirect function. | |||
| CVE-2022-44807 | 0.00 | — | 0.01 | Nov 22, 2022 | D-Link DIR-882 1.10B02 and 1.20B06 is vulnerable to Buffer Overflow via webGetVarString. | |||
| CVE-2022-44806 | 0.00 | — | 0.01 | Nov 22, 2022 | D-Link DIR-882 1.10B02 and 1.20B06 is vulnerable to Buffer Overflow. | |||
| CVE-2021-45998 | 0.00 | — | 0.04 | Feb 4, 2022 | D-Link device DIR_882 DIR_882_FW1.30B06_Hotfix_02 was discovered to contain a command injection vulnerability in the LocalIPAddress parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted HNAP1 POST request. |
- CVE-2024-48631Oct 17, 2024risk 0.00cvss —epss 0.02
D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command injection vulnerability via the SSID parameter in the SetWLanRadioSettings function. This vulnerability allows attackers to execute arbitrary OS commands via a crafted POST request.
- CVE-2024-48630Oct 17, 2024risk 0.00cvss —epss 0.02
D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command injection vulnerability via the MacAddress parameter in the SetMACFilters2 function. This vulnerability allows attackers to execute arbitrary OS commands via a crafted POST request.
- CVE-2024-48638Oct 17, 2024risk 0.00cvss —epss 0.02
D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command injection vulnerability via the SubnetMask parameter in the SetGuestZoneRouterSettings function. This vulnerability allows attackers to execute arbitrary OS commands via a crafted POST…
- CVE-2024-48632Oct 17, 2024risk 0.00cvss —epss 0.02
D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain multiple command injection vulnerabilities via the LocalIPAddress, TCPPorts, and UDPPorts parameters in the SetPortForwardingSettings function. This vulnerability allows attackers to execute…
- CVE-2023-24330Feb 21, 2024risk 0.00cvss —epss 0.01
Command Injection vulnerability in D-Link Dir 882 with firmware version DIR882A1_FW130B06 allows attackers to run arbitrary commands via crafted POST request to /HNAP1/.
- CVE-2024-22751Jan 24, 2024risk 0.00cvss —epss 0.01
D-Link DIR-882 DIR882A1_FW130B06 was discovered to contain a stack overflow via the sub_477AA0 function.
- CVE-2023-24797Apr 7, 2023risk 0.00cvss —epss 0.01
D-Link DIR882 DIR882A1_FW110B02 was discovered to contain a stack overflow in the sub_48AC20 function. This vulnerability allows attackers to cause a Denial of Service (DoS) or execute arbitrary code via a crafted payload.
- CVE-2023-26925Mar 31, 2023risk 0.00cvss —epss 0.01
An information disclosure vulnerability exists in the Syslog functionality of D-LINK DIR-882 1.30. A specially crafted network request can lead to the disclosure of sensitive information.
- CVE-2022-46568Dec 23, 2022risk 0.00cvss —epss 0.01
D-Link DIR-882 DIR882A1_FW130B06, DIR-878 DIR_878_FW1.30B08 was discovered to contain a stack overflow via the AccountPassword parameter in the SetSysEmailSettings module.
- CVE-2022-46569Dec 23, 2022risk 0.00cvss —epss 0.02
D-Link DIR-882 DIR882A1_FW130B06, DIR-878 DIR_878_FW1.30B08 was discovered to contain a stack overflow via the Key parameter in the SetWLanRadioSecurity module.
- CVE-2022-46563Dec 23, 2022risk 0.00cvss —epss 0.01
D-Link DIR-882 DIR882A1_FW130B06, DIR-878 DIR_878_FW1.30B08 was discovered to contain a stack overflow via the Password parameter in the SetDynamicDNSSettings module.
- CVE-2022-46562Dec 23, 2022risk 0.00cvss —epss 0.01
D-Link DIR-882 DIR882A1_FW130B06, DIR-878 DIR_878_FW1.30B08 was discovered to contain a stack overflow via the PSK parameter in the SetQuickVPNSettings module.
- CVE-2022-46570Dec 23, 2022risk 0.00cvss —epss 0.01
D-Link DIR-882 DIR882A1_FW130B06, DIR-878 DIR_878_FW1.30B08 was discovered to contain a stack overflow via the Password parameter in the SetWan3Settings module.
- CVE-2022-46561Dec 23, 2022risk 0.00cvss —epss 0.01
D-Link DIR-882 DIR882A1_FW130B06, DIR-878 DIR_878_FW1.30B08 was discovered to contain a stack overflow via the Password parameter in the SetWanSettings module.
- CVE-2022-46566Dec 23, 2022risk 0.00cvss —epss 0.01
D-Link DIR-882 DIR882A1_FW130B06, DIR-878 DIR_878_FW1.30B08 was discovered to contain a stack overflow via the Password parameter in the SetQuickVPNSettings module.
- CVE-2022-46560Dec 23, 2022risk 0.00cvss —epss 0.01
D-Link DIR-882 DIR882A1_FW130B06, DIR-878 DIR_878_FW1.30B08 was discovered to contain a stack overflow via the Password parameter in the SetWan2Settings module.
- CVE-2022-44804Nov 22, 2022risk 0.00cvss —epss 0.01
D-Link DIR-882 1.10B02 and1.20B06 is vulnerable to Buffer Overflow via the websRedirect function.
- CVE-2022-44807Nov 22, 2022risk 0.00cvss —epss 0.01
D-Link DIR-882 1.10B02 and 1.20B06 is vulnerable to Buffer Overflow via webGetVarString.
- CVE-2022-44806Nov 22, 2022risk 0.00cvss —epss 0.01
D-Link DIR-882 1.10B02 and 1.20B06 is vulnerable to Buffer Overflow.
- CVE-2021-45998Feb 4, 2022risk 0.00cvss —epss 0.04
D-Link device DIR_882 DIR_882_FW1.30B06_Hotfix_02 was discovered to contain a command injection vulnerability in the LocalIPAddress parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted HNAP1 POST request.
Page 2 of 3