Dir-2640 Firmware Security Vulnerabilities and Issues — Dir-2640 Firmware CVE List

Lucene search

DlinkDir-2640 Firmware

7 matches found

CVE•added 2022/04/11 8:15 p.m.•84 views

CVE-2022-1262

A command injection vulnerability in the protest binary allows an attacker with access to the remote command line interface to execute arbitrary commands as root.

7.8CVSS8AI score0.00406EPSS

CVE•added 2024/05/23 10:15 p.m.•69 views

CVE-2024-5293

D-Link DIR-2640 HTTP Referer Stack-Based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-2640-US routers. Authentication is not required to exploit this vulnerability. The spe...

8.8CVSS9.1AI score0.01365EPSS

CVE•added 2024/05/03 2:15 a.m.•54 views

CVE-2023-32147

D-Link DIR-2640 LocalIPAddress Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-2640 routers. Although authentication is required to exploit this vulnerability, the existing ...

6.8CVSS7.2AI score0.00478EPSS

CVE•added 2024/05/03 2:15 a.m.•53 views

CVE-2023-32153

D-Link DIR-2640 EmailFrom Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-2640 routers. Although authentication is required to exploit this vulnerability, the existing authe...

6.8CVSS7.2AI score0.00282EPSS

CVE•added 2024/05/03 2:15 a.m.•46 views

CVE-2023-32151

D-Link DIR-2640 DestNetwork Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-2640 routers. Although authentication is required to exploit this vulnerability, the existing aut...

6.8CVSS7.2AI score0.00478EPSS

CVE•added 2024/05/03 2:15 a.m.•44 views

CVE-2023-32150

D-Link DIR-2640 PrefixLen Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-2640 routers. Although authentication is required to exploit this vulnerability, the existing authe...

6.8CVSS7.2AI score0.00282EPSS

CVE•added 2024/05/03 2:15 a.m.•42 views

CVE-2023-32149

D-Link DIR-2640 prog.cgi Request Handling Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-2640 routers. Authentication is not required to exploit this vulnerabilit...

8.8CVSS9.1AI score0.01283EPSS