VYPR

Vendor CVEs

Dlink

All CVEs

1,843 total · sorted by risk
  • CVE-2025-4450May 9, 2025
    risk 0.00cvss epss 0.02

    A vulnerability, which was classified as critical, was found in D-Link DIR-619L 2.04B04. Affected is the function formSetEasy_Wizard. The manipulation of the argument curTime leads to buffer overflow. It is possible to launch the attack remotely. The vendor was contacted early…

  • CVE-2025-4449May 9, 2025
    risk 0.00cvss epss 0.02

    A vulnerability, which was classified as critical, has been found in D-Link DIR-619L 2.04B04. This issue affects the function formEasySetupWizard3. The manipulation of the argument wan_connected leads to buffer overflow. The attack may be initiated remotely. The vendor was…

  • CVE-2025-4448May 9, 2025
    risk 0.00cvss epss 0.02

    A vulnerability classified as critical was found in D-Link DIR-619L 2.04B04. This vulnerability affects the function formEasySetupWizard. The manipulation of the argument curTime leads to buffer overflow. The attack can be initiated remotely. The vendor was contacted early about…

  • CVE-2025-4445May 9, 2025
    risk 0.00cvss epss 0.07

    A vulnerability classified as critical has been found in D-Link DIR-605L 2.13B01. Affected is the function wake_on_lan. The manipulation of the argument mac leads to command injection. It is possible to launch the attack remotely. The vendor was contacted early about this…

  • CVE-2025-4443May 8, 2025
    risk 0.00cvss epss 0.54

    A vulnerability was found in D-Link DIR-605L 2.13B01. It has been rated as critical. This issue affects the function sub_454F2C. The manipulation of the argument sysCmd leads to command injection. The attack may be initiated remotely. The vendor was contacted early about this…

  • CVE-2025-4442May 8, 2025
    risk 0.00cvss epss 0.02

    A vulnerability was found in D-Link DIR-605L 2.13B01. It has been declared as critical. This vulnerability affects the function formSetWAN_Wizard55. The manipulation of the argument curTime leads to buffer overflow. The attack can be initiated remotely. The vendor was contacted…

  • CVE-2025-4441May 8, 2025
    risk 0.00cvss epss 0.02

    A vulnerability was found in D-Link DIR-605L 2.13B01. It has been classified as critical. This affects the function formSetWAN_Wizard534. The manipulation of the argument curTime leads to buffer overflow. It is possible to initiate the attack remotely. The vendor was contacted…

  • CVE-2025-4350May 6, 2025
    risk 0.00cvss epss 0.03

    A vulnerability classified as critical was found in D-Link DIR-600L up to 2.07B01. This vulnerability affects the function wake_on_lan. The manipulation of the argument host leads to command injection. The attack can be initiated remotely. This vulnerability only affects…

  • CVE-2025-4349May 6, 2025
    risk 0.00cvss epss 0.03

    A vulnerability classified as critical has been found in D-Link DIR-600L up to 2.07B01. This affects the function formSysCmd. The manipulation of the argument host leads to command injection. It is possible to initiate the attack remotely. This vulnerability only affects…

  • CVE-2025-4348May 6, 2025
    risk 0.00cvss epss 0.02

    A vulnerability was found in D-Link DIR-600L up to 2.07B01. It has been rated as critical. Affected by this issue is the function formSetWanL2TP. The manipulation of the argument host leads to buffer overflow. The attack may be launched remotely. This vulnerability only affects…

  • CVE-2025-4347May 6, 2025
    risk 0.00cvss epss 0.01

    A vulnerability was found in D-Link DIR-600L up to 2.07B01. It has been declared as critical. Affected by this vulnerability is the function formWlSiteSurvey. The manipulation of the argument host leads to buffer overflow. The attack can be launched remotely. This vulnerability…

  • CVE-2025-4346May 6, 2025
    risk 0.00cvss epss 0.01

    A vulnerability was found in D-Link DIR-600L up to 2.07B01. It has been classified as critical. Affected is the function formSetWAN_Wizard534. The manipulation of the argument host leads to buffer overflow. It is possible to launch the attack remotely. This vulnerability only…

  • CVE-2025-4345May 6, 2025
    risk 0.00cvss epss 0.01

    A vulnerability was found in D-Link DIR-600L up to 2.07B01 and classified as critical. This issue affects the function formSetLog. The manipulation of the argument host leads to buffer overflow. The attack may be initiated remotely. This vulnerability only affects products that…

  • CVE-2025-4344May 6, 2025
    risk 0.00cvss epss 0.01

    A vulnerability, which was classified as critical, was found in D-Link DIR-600L up to 2.07B01. This affects the function formLogin. The manipulation of the argument host leads to buffer overflow. It is possible to initiate the attack remotely. This vulnerability only affects…

  • CVE-2025-4343May 6, 2025
    risk 0.00cvss epss 0.01

    A vulnerability has been found in D-Link DIR-600L up to 2.07B01 and classified as critical. This vulnerability affects the function formEasySetupWizard. The manipulation of the argument host leads to buffer overflow. The attack can be initiated remotely. This vulnerability only…

  • CVE-2025-4342May 6, 2025
    risk 0.00cvss epss 0.01

    A vulnerability, which was classified as critical, has been found in D-Link DIR-600L up to 2.07B01. Affected by this issue is the function formEasySetupWizard3. The manipulation of the argument host leads to buffer overflow. The attack may be launched remotely. This…

  • CVE-2025-4341May 6, 2025
    risk 0.00cvss epss 0.17

    A vulnerability classified as critical was found in D-Link DIR-880L up to 104WWb01. Affected by this vulnerability is the function sub_16570 of the file /htdocs/ssdpcgi of the component Request Header Handler. The manipulation of the argument…

  • CVE-2025-4340May 6, 2025
    risk 0.00cvss epss 0.04

    A vulnerability classified as critical has been found in D-Link DIR-890L and DIR-806A1 up to 100CNb11/108B03. Affected is the function sub_175C8 of the file /htdocs/soap.cgi. The manipulation leads to command injection. It is possible to launch the attack remotely. The exploit…

  • CVE-2025-44835May 1, 2025
    risk 0.00cvss epss 0.01

    D-Link DIR-816 A2V1.1.0B05 was found to contain a command injection in iptablesWebsFilterRun, which allows remote attackers to execute arbitrary commands via shell.

  • CVE-2025-29743Apr 22, 2025
    risk 0.00cvss epss 0.01

    D-Link DIR-816 A2V1.1.0B05 was found to contain a command injection in /goform/delRouting.

  • CVE-2025-3785Apr 18, 2025
    risk 0.00cvss epss 0.09

    A vulnerability has been found in D-Link DWR-M961 1.1.36 and classified as critical. This vulnerability affects unknown code of the file /boafrm/formStaticDHCP of the component Authorization Interface. The manipulation of the argument Hostname leads to stack-based buffer…

  • CVE-2025-29040Apr 17, 2025
    risk 0.00cvss epss 0.01

    An issue in dlink DIR 823x 240802 allows a remote attacker to execute arbitrary code via the target_addr key value and the function 0x41737c

  • CVE-2025-29043Apr 17, 2025
    risk 0.00cvss epss 0.01

    An issue in dlink DIR 832x 240802 allows a remote attacker to execute arbitrary code via the function 0x417234

  • CVE-2025-29039Apr 17, 2025
    risk 0.00cvss epss 0.01

    An issue in dlink DIR 832x 240802 allows a remote attacker to execute arbitrary code via the function 0x41dda8

  • CVE-2025-29042Apr 17, 2025
    risk 0.00cvss epss 0.01

    An issue in dlink DIR 832x 240802 allows a remote attacker to execute arbitrary code via the macaddr key value to the function 0x42232c

  • CVE-2025-29041Apr 17, 2025
    risk 0.00cvss epss 0.01

    An issue in dlink DIR 823x 240802 allows a remote attacker to execute arbitrary code via the target_addr key value and the function 0x41710c

  • CVE-2025-28398Apr 1, 2025
    risk 0.00cvss epss 0.01

    D-LINK DI-8100 16.07.26A1 is vulnerable to Buffer Overflow in the ipsec_net_asp function via the remot_ip parameter.

  • CVE-2025-28395Apr 1, 2025
    risk 0.00cvss epss 0.01

    D-LINK DI-8100 16.07.26A1 is vulnerable to Buffer Overflow in the ipsec_road_asp function via the host_ip parameter.

  • CVE-2025-2717Mar 24, 2025
    risk 0.00cvss epss 0.04

    A vulnerability, which was classified as critical, has been found in D-Link DIR-823X 240126/240802. This issue affects the function sub_41710C of the file /goform/diag_nslookup of the component HTTP POST Request Handler. The manipulation of the argument target_addr leads to os…

  • CVE-2025-2621Mar 22, 2025
    risk 0.00cvss epss 0.02

    A vulnerability was found in D-Link DAP-1620 1.03 and classified as critical. This issue affects the function check_dws_cookie of the file /storage. The manipulation of the argument uid leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has…

  • CVE-2025-2619Mar 22, 2025
    risk 0.00cvss epss 0.02

    A vulnerability, which was classified as critical, was found in D-Link DAP-1620 1.03. This affects the function check_dws_cookie of the file /storage of the component Cookie Handler. The manipulation leads to stack-based buffer overflow. It is possible to initiate the attack…

  • CVE-2025-2618Mar 22, 2025
    risk 0.00cvss epss 0.02

    A vulnerability, which was classified as critical, has been found in D-Link DAP-1620 1.03. Affected by this issue is the function set_ws_action of the file /dws/api/ of the component Path Handler. The manipulation leads to heap-based buffer overflow. The attack may be launched…

  • CVE-2025-2553Mar 20, 2025
    risk 0.00cvss epss 0.01

    A vulnerability was found in D-Link DIR-618 and DIR-605L 2.02/3.02. It has been rated as problematic. This issue affects some unknown processing of the file /goform/formVirtualServ. The manipulation leads to improper access controls. The attack needs to be approached within the…

  • CVE-2025-2552Mar 20, 2025
    risk 0.00cvss epss 0.01

    A vulnerability was found in D-Link DIR-618 and DIR-605L 2.02/3.02. It has been declared as problematic. This vulnerability affects unknown code of the file /goform/formTcpipSetup. The manipulation leads to improper access controls. Access to the local network is required for…

  • CVE-2025-2551Mar 20, 2025
    risk 0.00cvss epss 0.01

    A vulnerability was found in D-Link DIR-618 and DIR-605L 2.02/3.02. It has been classified as problematic. This affects an unknown part of the file /goform/formSetPortTr. The manipulation leads to improper access controls. Access to the local network is required for this attack.…

  • CVE-2025-2550Mar 20, 2025
    risk 0.00cvss epss 0.01

    A vulnerability was found in D-Link DIR-618 and DIR-605L 2.02/3.02 and classified as problematic. Affected by this issue is some unknown functionality of the file /goform/formSetDDNS of the component DDNS Service. The manipulation leads to improper access controls. The attack…

  • CVE-2025-2549Mar 20, 2025
    risk 0.00cvss epss 0.01

    A vulnerability has been found in D-Link DIR-618 and DIR-605L 2.02/3.02 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /goform/formSetPassword. The manipulation leads to improper access controls. The attack needs to be done…

  • CVE-2025-2548Mar 20, 2025
    risk 0.00cvss epss 0.01

    A vulnerability, which was classified as problematic, was found in D-Link DIR-618 and DIR-605L 2.02/3.02. Affected is an unknown function of the file /goform/formSetDomainFilter. The manipulation leads to improper access controls. The attack can only be initiated within the…

  • CVE-2025-2547Mar 20, 2025
    risk 0.00cvss epss 0.01

    A vulnerability, which was classified as problematic, has been found in D-Link DIR-618 and DIR-605L 2.02/3.02. This issue affects some unknown processing of the file /goform/formAdvNetwork. The manipulation leads to improper access controls. The attack can only be done within…

  • CVE-2025-2546Mar 20, 2025
    risk 0.00cvss epss 0.10

    A vulnerability classified as problematic was found in D-Link DIR-618 and DIR-605L 2.02/3.02. This vulnerability affects unknown code of the file /goform/formAdvFirewall of the component Firewall Service. The manipulation leads to improper access controls. The attack needs to be…

  • CVE-2024-57440Mar 20, 2025
    risk 0.00cvss epss 0.01

    D-Link DSL-3788 revA1 1.01R1B036_EU_EN is vulnerable to Buffer Overflow via the COMM_MAKECustomMsg function of the webproc cgi

  • CVE-2025-2360Mar 17, 2025
    risk 0.00cvss epss 0.04

    A vulnerability classified as critical was found in D-Link DIR-823G 1.0.2B05_20181207. Affected by this vulnerability is the function SetUpnpSettings of the file /HNAP1/ of the component UPnP Service. The manipulation of the argument SOAPAction leads to improper authorization.…

  • CVE-2025-1877Mar 3, 2025
    risk 0.00cvss epss 0.01

    A vulnerability, which was classified as critical, was found in D-Link DAP-1562 1.10. This affects the function pure_auth_check of the component HTTP POST Request Handler. The manipulation of the argument a1 leads to null pointer dereference. It is possible to initiate the…

  • CVE-2025-1876Mar 3, 2025
    risk 0.00cvss epss 0.03

    A vulnerability, which was classified as critical, has been found in D-Link DAP-1562 1.10. Affected by this issue is the function http_request_parse of the component HTTP Header Handler. The manipulation of the argument Authorization leads to stack-based buffer overflow. The…

  • CVE-2025-1800Mar 1, 2025
    risk 0.00cvss epss 0.05

    A vulnerability has been found in D-Link DAR-7000 3.2 and classified as critical. This vulnerability affects the function get_ip_addr_details of the file /view/vpn/sxh_vpn/sxh_vpnlic.php of the component HTTP POST Request Handler. The manipulation of the argument ethname leads…

  • CVE-2025-1539Feb 21, 2025
    risk 0.00cvss epss 0.01

    A vulnerability, which was classified as critical, has been found in D-Link DAP-1320 1.00. Affected by this issue is the function replace_special_char of the file /storagein.pd-XXXXXX. The manipulation leads to stack-based buffer overflow. The attack may be launched remotely.…

  • CVE-2025-1538Feb 21, 2025
    risk 0.00cvss epss 0.01

    A vulnerability classified as critical was found in D-Link DAP-1320 1.00. Affected by this vulnerability is the function set_ws_action of the file /dws/api/. The manipulation leads to heap-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed…

  • CVE-2025-25891Feb 18, 2025
    risk 0.00cvss epss 0.00

    A buffer overflow vulnerability was discovered in D-Link DSL-3782 v1.01, triggered by the destination, netmask and gateway parameters. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted packet.

  • CVE-2025-25893Feb 18, 2025
    risk 0.00cvss epss 0.01

    An OS command injection vulnerability was discovered in D-Link DSL-3782 v1.01 via the inIP, insPort, inePort, exsPort, exePort, and protocol parameters. This vulnerability allows attackers to execute arbitrary operating system (OS) commands via a crafted packet.

  • CVE-2025-25894Feb 18, 2025
    risk 0.00cvss epss 0.01

    An OS command injection vulnerability was discovered in D-Link DSL-3782 v1.01 via the samba_wg and samba_nbn parameters. This vulnerability allows attackers to execute arbitrary operating system (OS) commands via a crafted packet.

Page 19 of 37