Dap-1650 Firmware Security Vulnerabilities and Issues — Dap-1650 Firmware CVE List

Lucene search

DlinkDap-1650 Firmware

6 matches found

CVE•added 2020/03/21 1:15 a.m.•118 views

CVE-2019-12767

An issue was discovered on D-Link DAP-1650 devices before 1.04B02_J65H Hot Fix. Attackers can execute arbitrary commands.

9.8CVSS9.6AI score0.00941EPSS

CVE•added 2020/12/30 8:15 p.m.•62 views

CVE-2019-12768

An issue was discovered on D-Link DAP-1650 devices through v1.03b07 before 1.04B02_J65H Hot Fix. Attackers can bypass authentication via forceful browsing.

9.8CVSS9.6AI score0.00227EPSS

CVE•added 2024/01/26 12:15 a.m.•52 views

CVE-2024-23625

A command injection vulnerability exists in D-Link DAP-1650 devices when handling UPnP SUBSCRIBE messages. An unauthenticated attacker can exploit this vulnerability to gain command execution on the device as root.

9.8CVSS9.8AI score0.10009EPSS

CVE•added 2024/01/26 12:15 a.m.•48 views

CVE-2024-23624

A command injection vulnerability exists in the gena.cgi module of D-Link DAP-1650 devices. An unauthenticated attacker can exploit this vulnerability to gain command execution on the device as root.

9.8CVSS9.8AI score0.10009EPSS

CVE•added 2024/07/16 8:15 p.m.•48 views

CVE-2024-40505

Directory Traversal vulnerability in D-Link DAP-1650 Firmware v.1.03 allows a local attacker to escalate privileges via the hedwig.cgi component.

9.3CVSS9.1AI score0.00158EPSS

CVE•added 2022/09/08 12:15 a.m.•41 views

CVE-2022-36588

In D-Link DAP1650 v1.04 firmware, the fileaccess.cgi program in the firmware has a buffer overflow vulnerability caused by strncpy.

9.8CVSS9.6AI score0.00274EPSS