DIR-880L

CVEs (9)

CVE	Vendor / Product	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2018-6530	Dlink DIR-868L	0.26	—	0.94	KEV	Mar 6, 2018	OS command injection vulnerability in soap.cgi (soapcgi_main in cgibin) in D-Link DIR-880L DIR-880L_REVA_FIRMWARE_PATCH_1.08B04 and previous versions, DIR-868L DIR868LA1_FW112b04 and previous versions, DIR-65L DIR-865L_REVA_FIRMWARE_PATCH_1.08.B01 and previous versions, and…
CVE-2016-6563	Dlink DIR-822	0.10	—	0.85		Jul 13, 2018	Processing malformed SOAP messages when performing the HNAP Login action causes a buffer overflow in the stack in some D-Link DIR routers. The vulnerable XML fields within the SOAP body are: Action, Username, LoginPassword, and Captcha. The following products are affected:…
CVE-2025-4341	Dlink DIR-880L	0.00	—	0.01		May 6, 2025	A vulnerability classified as critical was found in D-Link DIR-880L up to 104WWb01. Affected by this vulnerability is the function sub_16570 of the file /htdocs/ssdpcgi of the component Request Header Handler. The manipulation of the argument…
CVE-2023-39671	Dlink DIR-880	0.00	—	0.01		Aug 18, 2023	D-Link DIR-880 A1_FW107WWb08 was discovered to contain a buffer overflow via the function FUN_0001be68.
CVE-2023-39669	Dlink DIR-880	0.00	—	0.00		Aug 18, 2023	D-Link DIR-880 A1_FW107WWb08 was discovered to contain a NULL pointer dereference in the function FUN_00010824.
CVE-2023-39674	Dlink DIR-880	0.00	—	0.01		Aug 18, 2023	D-Link DIR-880 A1_FW107WWb08 was discovered to contain a buffer overflow via the function fgets.
CVE-2020-29322	Dlink DIR-880L	0.00	—	0.01		Jun 4, 2021	The D-Link router DIR-880L 1.07 is vulnerable to credentials disclosure in telnet service through decompilation of firmware, that allows an unauthenticated attacker to gain access to the firmware and to extract sensitive data.
CVE-2017-14948	Dlink DIR-880L	0.00	—	0.03		Oct 14, 2019	Certain D-Link products are affected by: Buffer Overflow. This affects DIR-880L 1.08B04 and DIR-895 L/R 1.13b03. The impact is: execute arbitrary code (remote). The component is: htdocs/fileaccess.cgi. The attack vector is: A crafted HTTP request handled by fileacces.cgi could…
CVE-2018-20674	Dlink DIR-822	0.00	—	0.01		Jan 9, 2019	D-Link DIR-822 C1 before v3.11B01Beta, DIR-822-US C1 before v3.11B01Beta, DIR-850L A* before v1.21B08Beta, DIR-850L B* before v2.22B03Beta, and DIR-880L A* before v1.20B02Beta devices allow authenticated remote command execution.

CVE-2018-6530KEVMar 6, 2018
Dlink
DIR-868L
risk 0.26cvss —epss 0.94
OS command injection vulnerability in soap.cgi (soapcgi_main in cgibin) in D-Link DIR-880L DIR-880L_REVA_FIRMWARE_PATCH_1.08B04 and previous versions, DIR-868L DIR868LA1_FW112b04 and previous versions, DIR-65L DIR-865L_REVA_FIRMWARE_PATCH_1.08.B01 and previous versions, and…
CVE-2016-6563Jul 13, 2018
Dlink
DIR-822
risk 0.10cvss —epss 0.85
Processing malformed SOAP messages when performing the HNAP Login action causes a buffer overflow in the stack in some D-Link DIR routers. The vulnerable XML fields within the SOAP body are: Action, Username, LoginPassword, and Captcha. The following products are affected:…
CVE-2025-4341May 6, 2025
Dlink
DIR-880L
risk 0.00cvss —epss 0.01
A vulnerability classified as critical was found in D-Link DIR-880L up to 104WWb01. Affected by this vulnerability is the function sub_16570 of the file /htdocs/ssdpcgi of the component Request Header Handler. The manipulation of the argument…
CVE-2023-39671Aug 18, 2023
Dlink
DIR-880
risk 0.00cvss —epss 0.01
D-Link DIR-880 A1_FW107WWb08 was discovered to contain a buffer overflow via the function FUN_0001be68.
CVE-2023-39669Aug 18, 2023
Dlink
DIR-880
risk 0.00cvss —epss 0.00
D-Link DIR-880 A1_FW107WWb08 was discovered to contain a NULL pointer dereference in the function FUN_00010824.
CVE-2023-39674Aug 18, 2023
Dlink
DIR-880
risk 0.00cvss —epss 0.01
D-Link DIR-880 A1_FW107WWb08 was discovered to contain a buffer overflow via the function fgets.
CVE-2020-29322Jun 4, 2021
Dlink
DIR-880L
risk 0.00cvss —epss 0.01
The D-Link router DIR-880L 1.07 is vulnerable to credentials disclosure in telnet service through decompilation of firmware, that allows an unauthenticated attacker to gain access to the firmware and to extract sensitive data.
CVE-2017-14948Oct 14, 2019
Dlink
DIR-880L
risk 0.00cvss —epss 0.03
Certain D-Link products are affected by: Buffer Overflow. This affects DIR-880L 1.08B04 and DIR-895 L/R 1.13b03. The impact is: execute arbitrary code (remote). The component is: htdocs/fileaccess.cgi. The attack vector is: A crafted HTTP request handled by fileacces.cgi could…
CVE-2018-20674Jan 9, 2019
Dlink
DIR-822
risk 0.00cvss —epss 0.01
D-Link DIR-822 C1 before v3.11B01Beta, DIR-822-US C1 before v3.11B01Beta, DIR-850L A* before v1.21B08Beta, DIR-850L B* before v2.22B03Beta, and DIR-880L A* before v1.20B02Beta devices allow authenticated remote command execution.