Lucene search

Dir-820L Firmware Security Vulnerabilities - 2023

cve

CVE-2023-25279

OS Command injection vulnerability in D-Link DIR820LA1_FW105B03 allows attackers to escalate privileges to root via a crafted payload.

9.8CVSS

9.5AI Score

0.002EPSS

2023-03-13 07:15 PM

cve

CVE-2023-25282

A heap overflow vulnerability in D-Link DIR820LA1_FW106B02 allows attackers to cause a denial of service via the config.log_to_syslog and log_opt_dropPackets parameters to mydlink_api.ccp.

6.5CVSS

6.4AI Score

0.001EPSS

2023-03-15 07:15 PM

cve

CVE-2023-25283

A stack overflow vulnerability in D-Link DIR820LA1_FW106B02 allows attackers to cause a denial of service via the reserveDHCP_HostName_1.1.1.0 parameter to lan.asp.

7.5CVSS

7.4AI Score

0.001EPSS

2023-03-13 12:15 PM

cve

CVE-2023-44807

D-Link DIR-820L 1.05B03 has a stack overflow vulnerability in the cancelPing function.

9.8CVSS

9.5AI Score

0.001EPSS

2023-10-06 05:15 PM

cve

CVE-2023-44808

D-Link DIR-820L 1.05B03 has a stack overflow vulnerability in the sub_4507CC function.

9.8CVSS

9.4AI Score

0.001EPSS

2023-10-16 06:15 AM

cve

CVE-2023-44809

D-Link device DIR-820L 1.05B03 is vulnerable to Insecure Permissions.

9.8CVSS

9.3AI Score

0.004EPSS

2023-10-16 06:15 AM