10 matches found
CVE-2022-46569
CVE-2022-46569 affects D-Link DIR-882 and DIR-878 devices (firmware DIR882A1 FW130B06 and DIR 878 FW1.30B08). A stack overflow in the SetWLanRadioSecurity module via the Key parameter is the root cause, leading to a high-impact vulnerability affecting confidentiality, integrity, and availability ...
CVE-2022-46568
D-Link DIR-882 DIR882A1FW130B06, DIR-878 DIR878FW1.30B08 was discovered to contain a stack overflow via the AccountPassword parameter in the SetSysEmailSettings module...
CVE-2022-46563
CVE-2022-46563 relates to a stack overflow in the SetDynamicDNSSettings module of D-Link DIR-882 and DIR-878 firmwares. Affected: DIR-882 (DIR882A1_FW130B06) and DIR-878 (DIR_878_FW1.30B08). Root cause: buffer/stack overflow via the Password parameter. Impact per CVSS: Confidentiality, Integrity,...
CVE-2022-46561
The CVE-2022-46561 entry concerns two D-Link router models: DIR-882 (DIR882A1_FW130B06) and DIR-878 (DIR_878_FW1.30B08). The vulnerability is a stack overflow in the SetWanSettings module triggered via the Password parameter. This is the underlying cause stated across the provided documents. The ...
CVE-2022-28895
D-Link DIR882/DIR882A1_FW130B06 is affected by a command-injection in the /setnetworksettings/IPAddress component. The root-cause is improper handling of crafted payloads that enables privilege escalation to root. Impact is described as remote execution with full device compromise if exploited; C...
D-Link DIR882 操作系统命令注入漏洞
The D-Link DIR882 is a dual-band wireless router from China-based AUO D-Link. The D-Link DIR882 DIR882A1FW130B06 firmware version suffers from an operating system command injection vulnerability that stems from a command injection issue in the component /setnetworksettings/IPAddress. An attacker...
CVE-2022-28571
D-link 882 DIR882A1FW130B06 was discovered to contain a command injection vulnerability in/usr/bin/cli...
Command injection
D-link 882 DIR882A1FW130B06 was discovered to contain a command injection vulnerability in/usr/bin/cli...
CVE-2022-28571
D-link 882 DIR882A1FW130B06 was discovered to contain a command injection vulnerability in/usr/bin/cli...
CVE-2022-28571
The CVE-2022-28571 affects the D-Link DIR-882 family (DIR882A1_FW130B06) and involves a command injection vulnerability in the /usr/bin/cli endpoint. Public sources describe the root cause as improper handling of symbolic links/data sanitization at the management interface, enabling an attacker t...