Dir-822 Firmware Security Vulnerabilities and Issues — Dir-822 Firmware CVE List

Lucene search

D-linkDir-822 Firmware

8 matches found

CVE•added 2019/05/13 2:29 p.m.•90 views

CVE-2018-19986

In the /HNAP1/SetRouterSettings message, the RemotePort parameter is vulnerable, and the vulnerability affects D-Link DIR-818LW Rev.A 2.05.B03 and DIR-822 B1 202KRb06 devices. In the SetRouterSettings.php source code, the RemotePort parameter is saved in the $path_inf_wan1."/web" internal configura...

10CVSS9.5AI score0.54363EPSS

CVE•added 2024/05/14 4:17 p.m.•66 views

CVE-2024-34950

D-Link DIR-822+ v1.0.5 was discovered to contain a stack-based buffer overflow vulnerability in the SetNetworkTomographySettings module.

7.5CVSS7.7AI score0.10387EPSS

CVE•added 2019/05/13 2:29 p.m.•57 views

CVE-2018-19987

D-Link DIR-822 Rev.B 202KRb06, DIR-822 Rev.C 3.10B06, DIR-860L Rev.B 2.03.B03, DIR-868L Rev.B 2.05B02, DIR-880L Rev.A 1.20B01_01_i3se_BETA, and DIR-890L Rev.A 1.21B02_BETA devices mishandle IsAccessPoint in /HNAP1/SetAccessPointMode. In the SetAccessPointMode.php source code, the IsAccessPoint para...

10CVSS9.7AI score0.83513EPSS

CVE•added 2019/05/13 2:29 p.m.•49 views

CVE-2018-19990

In the /HNAP1/SetWiFiVerifyAlpha message, the WPSPIN parameter is vulnerable, and the vulnerability affects D-Link DIR-822 B1 202KRb06 devices. In the SetWiFiVerifyAlpha.php source code, the WPSPIN parameter is saved in the $rphyinf1."/media/wps/enrollee/pin" and $rphyinf2."/media/wps/enrollee/pin"...

10CVSS9.4AI score0.10752EPSS

CVE•added 2024/04/26 6:15 p.m.•45 views

CVE-2024-33344

D-Link DIR-822+ V1.0.5 was found to contain a command injection in ftext function of upload_firmware.cgi, which allows remote attackers to execute arbitrary commands via shell.

9.8CVSS8.5AI score0.04036EPSS

CVE•added 2024/04/26 6:15 p.m.•42 views

CVE-2024-33342

D-Link DIR-822+ V1.0.5 was found to contain a command injection in SetPlcNetworkpwd function of prog.cgi, which allows remote attackers to execute arbitrary commands via shell.

7.5CVSS8.5AI score0.00396EPSS

CVE•added 2019/05/13 2:29 p.m.•41 views

CVE-2018-19989

In the /HNAP1/SetQoSSettings message, the uplink parameter is vulnerable, and the vulnerability affects D-Link DIR-822 Rev.B 202KRb06 and DIR-822 Rev.C 3.10B06 devices. In the SetQoSSettings.php source code, the uplink parameter is saved in the /bwc/entry:1/bandwidth and /bwc/entry:2/bandwidth inte...

10CVSS9.4AI score0.36981EPSS

CVE•added 2020/08/18 5:15 p.m.•35 views

CVE-2019-6258

D-Link DIR-822 Rev.Bx devices with firmware v.202KRb06 and older allow a buffer overflow via long MacAddress data in a /HNAP1/SetClientInfo HNAP protocol message, which is mishandled in /usr/sbin/udhcpd during reading of the /var/servd/LAN-1-udhcpd.conf file.

9.8CVSS9.6AI score0.01357EPSS