D-Link DIR-846W Command Execution Vulnerability

D-Link DIR-846W is a dual-band Gigabit wireless router with second-generation 11AC technology and MU-MIMO technology, supporting dual-band concurrent transmission rates up to 1200Mbps for 200M and above broadband users. The D-Link DIR-846W suffers from a command execution vulnerability that stems...

VulnCheck KEV: CVE-2020-10215

An issue was discovered on D-Link DIR-825 Rev.B 2.10 devices. They allow remote attackers to execute arbitrary commands via the dnsqueryname parameter in a dnsquery.cgi POST request. TRENDnet TEW-632BRP 1.010B32 is also affected...

VulnCheck KEV: CVE-2019-3914

Remote command injection vulnerability in Verizon Fios Quantum Gateway G1100 firmware version 02.01.00.05 allows a remote, authenticated attacker to execute arbitrary commands on the target device by adding an access control rule for a network object with a crafted hostname...

VulnCheck KEV: CVE-2024-7029

Commands can be injected over the network and executed without authentication...

CVE-2024-44342

D-Link DIR-846W A1 FW100A43 was discovered to contain a remote command execution RCE vulnerability via the wl0.0ssid parameter. This vulnerability is exploited via a crafted POST request...

CVE-2024-44340

D-Link DIR-846W A1 FW100A43 was discovered to contain a remote command execution RCE vulnerability via keys smartqosexpressdevices and smartqosnormaldevices in SetSmartQoSSettings...

CVE-2024-44341

D-Link DIR-846W A1 FW100A43 was discovered to contain a remote command execution RCE vulnerability via the lan0dhcpsstaticlist parameter. This vulnerability is exploited via a crafted POST request...

CVE-2024-44341

D-Link DIR-846W A1 FW100A43 was discovered to contain a remote command execution RCE vulnerability via the lan0dhcpsstaticlist parameter. This vulnerability is exploited via a crafted POST request...

CVE-2024-44342

D-Link DIR-846W A1 FW100A43 was discovered to contain a remote command execution RCE vulnerability via the wl0.0ssid parameter. This vulnerability is exploited via a crafted POST request...

CVE-2024-44340

D-Link DIR-846W A1 FW100A43 was discovered to contain a remote command execution RCE vulnerability via keys smartqosexpressdevices and smartqosnormaldevices in SetSmartQoSSettings...

CVE-2024-44341

D-Link DIR-846W A1 FW100A43 was discovered to contain a remote command execution RCE vulnerability via the lan0dhcpsstaticlist parameter. This vulnerability is exploited via a crafted POST request...

CVE-2024-41622

The CVE-2024-41622 entry affects the D-Link DIR-846W A1 FW100A43, with a remote command execution (RCE) vulnerability exposed via the tomography_ping_address parameter in the /HNAP1/ interface. The root cause is the ability to execute arbitrary commands remotely, enabling a network-adjacent attac...

D-Link DIR-846W 安全漏洞

D-Link DIR-846W is a dual-band Gigabit wireless router with second-generation 11AC technology and MU-MIMO technology, supporting dual-band concurrent transmission rates up to 1200Mbps for 200M and above broadband users. A command execution vulnerability exists in the D-Link DIR-846W. The...

CVE-2024-44340

The CVE-2024-44340 entry concerns the D-Link DIR-846W A1 FW100A43 router (SetSmartQoSSettings) with a remote command execution (RCE) vulnerability exploitable via the smartqos_express_devices and smartqos_normal_devices parameters. The issue is described across multiple sources (NVD/Red Hat/CNVD/...

CVE-2024-44342

CVE-2024-44342 affects D-Link DIR-846W A1 FW100A43 and is a remote command execution vulnerability exploitable via the wl(0).(0)_ssid parameter using a crafted POST request. The issue is documented across multiple feeds; several sources identify this as a high/critical risk with CVSS-derived impa...

CVE-2024-44342

D-Link DIR-846W A1 FW100A43 was discovered to contain a remote command execution RCE vulnerability via the wl0.0ssid parameter. This vulnerability is exploited via a crafted POST request...

PT-2024-5843 · D Link · D-Link Dir-846

Name of the Vulnerable Software and Affected Versions: D-Link DIR-846W A1 FW100A43 Description: A remote command execution vulnerability was discovered in the D-Link DIR-846W A1 FW100A43, related to the SetSmartQoSSettings function. This issue allows a remote attacker to execute arbitrary code by...

CVE-2024-44341

D-Link DIR-846W A1 FW100A43 is affected by CVE-2024-44341: a remote command execution (RCE) vulnerability through the lan(0)_dhcps_staticlist parameter, exploitable via a crafted POST request over the network. The Red Hat/CVE ecosystem confirms the issue, and PT-Security notes a practical workaro...

CVE-2024-41622

D-Link DIR-846W A1 FW100A43 was discovered to contain a remote command execution RCE vulnerability via the tomographypingaddress parameter in /HNAP1/ interface...

CVE-2024-41622

D-Link DIR-846W A1 FW100A43 was discovered to contain a remote command execution RCE vulnerability via the tomographypingaddress parameter in /HNAP1/ interface...