CVE-2025-25743

D-Link DIR-853 A1 FW1.20B07 was discovered to contain a command injection vulnerability in the SetVirtualServerSettings module...

PT-2025-7101 · D Link · D-Link Dir-853

Name of the Vulnerable Software and Affected Versions: D-Link DIR-853 A1 version FW1.20B07 Description: A command injection issue was discovered in the SetVirtualServerSettings module. This allows for potential exploitation. Recommendations: For D-Link DIR-853 A1 version FW1.20B07, consider...

CVE-2024-48633

D-Link DIR882FW130B06 and DIR878 DIR878FW130B08 were discovered to contain multiple command injection vulnerabilities via the ExternalPort, InternalPort, ProtocolNumber, and LocalIPAddress parameters in the SetVirtualServerSettings function. This vulnerability allows attackers to execute arbitrar...

Unable to change ciphers or SSL parameters on SSL Bridge virtual server.

No option is available to change ciphers or SSL parameters on SSLBRIDGE type virtual server...

Tenda AC8 Buffer Overflow Vulnerability

Tenda AC8 is a dual-band Gigabit wireless router from Tenda, designed for fiber optic homes up to 1000 megabytes, supporting dual-band concurrent transmission rates up to 1167Mbps, equipped with full Gigabit ports 1 WAN port + 3 LAN ports for 100-1000 megabit broadband access. Tenda AC8 suffers...

How to enable WebSocket on load balancing virtual server

...

CVE-2022-43631

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-1935 1.03 routers. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

PT-2022-5529 · D Link · D-Link Dir-1935

Name of the Vulnerable Software and Affected Versions: D-Link DIR-1935 version 1.03 Description: This issue allows network-adjacent attackers to execute arbitrary code on affected installations. Although authentication is required to exploit this issue, the existing authentication mechanism can b...