Dir-2640 Firmware Security Vulnerabilities and Issues — Dir-2640 Firmware CVE List

Lucene search

DlinkDir-2640 Firmware

8 matches found

CVE•added 2024/05/23 10:15 p.m.•70 views

CVE-2024-5293

D-Link DIR-2640 HTTP Referer Stack-Based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-2640-US routers. Authentication is not required to exploit this vulnerability. The spe...

8.8CVSS9.1AI score0.00976EPSS

CVE•added 2024/05/03 2:15 a.m.•55 views

CVE-2023-32147

D-Link DIR-2640 LocalIPAddress Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-2640 routers. Although authentication is required to exploit this vulnerability, the existing ...

6.8CVSS7.2AI score0.0026EPSS

CVE•added 2024/05/03 2:15 a.m.•54 views

CVE-2023-32153

D-Link DIR-2640 EmailFrom Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-2640 routers. Although authentication is required to exploit this vulnerability, the existing authe...

6.8CVSS7.2AI score0.00344EPSS

CVE•added 2024/05/03 2:15 a.m.•48 views

CVE-2023-32152

D-Link DIR-2640 HNAP LoginPassword Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of D-Link DIR-2640 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within t...

6.5CVSS6.6AI score0.00295EPSS

CVE•added 2024/05/03 2:15 a.m.•47 views

CVE-2023-32148

D-Link DIR-2640 HNAP PrivateLogin Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of D-Link DIR-2640 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within th...

6.5CVSS6.6AI score0.00282EPSS

CVE•added 2024/05/03 2:15 a.m.•47 views

CVE-2023-32151

D-Link DIR-2640 DestNetwork Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-2640 routers. Although authentication is required to exploit this vulnerability, the existing aut...

6.8CVSS7.2AI score0.0026EPSS

CVE•added 2024/05/03 2:15 a.m.•45 views

CVE-2023-32150

D-Link DIR-2640 PrefixLen Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-2640 routers. Although authentication is required to exploit this vulnerability, the existing authe...

6.8CVSS7.2AI score0.00344EPSS

CVE•added 2024/05/03 2:15 a.m.•43 views

CVE-2023-32149

D-Link DIR-2640 prog.cgi Request Handling Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-2640 routers. Authentication is not required to exploit this vulnerabilit...

8.8CVSS9.1AI score0.00687EPSS