Dir-806 Firmware Security Vulnerabilities and Issues — Dir-806 Firmware CVE List

Lucene search

DlinkDir-806 Firmware

6 matches found

CVE•added 2019/09/06 8:15 p.m.•217 views

CVE-2019-10891

An issue was discovered in D-Link DIR-806 devices. There is a command injection in function hnap_main, which calls system() without checking the parameter that can be controlled by user, and finally allows remote attackers to execute arbitrary shell commands with a special HTTP header.

10CVSS9.9AI score0.74963EPSS

CVE•added 2019/09/06 8:15 p.m.•144 views

CVE-2019-10892

An issue was discovered in D-Link DIR-806 devices. There is a stack-based buffer overflow in function hnap_main at /htdocs/cgibin. The function will call sprintf without checking the length of strings in parameters given by HTTP header and can be controlled by users. And it finally leads to a stack...

10CVSS9.5AI score0.00856EPSS

CVE•added 2025/05/06 8:15 a.m.•50 views

CVE-2025-4340

A vulnerability classified as critical has been found in D-Link DIR-890L and DIR-806A1 up to 100CNb11/108B03. Affected is the function sub_175C8 of the file /htdocs/soap.cgi. The manipulation leads to command injection. It is possible to launch the attack remotely. The exploit has been disclosed to...

9.8CVSS7.5AI score0.00109EPSS

CVE•added 2023/09/21 11:15 p.m.•46 views

CVE-2023-43128

D-LINK DIR-806 1200M11AC wireless router DIR806A1_FW100CNb11 is vulnerable to command injection due to lax filtering of HTTP_ST parameters.

9.8CVSS9.6AI score0.0109EPSS

CVE•added 2023/09/22 11:15 p.m.•43 views

CVE-2023-43129

D-LINK DIR-806 1200M11AC wireless router DIR806A1_FW100CNb11 is vulnerable to command injection due to lax filtering of REMOTE_PORT parameters.

9.8CVSS9.7AI score0.0109EPSS

CVE•added 2023/09/22 11:15 p.m.•34 views

CVE-2023-43130

D-LINK DIR-806 1200M11AC wireless router DIR806A1_FW100CNb11 is vulnerable to command injection.

9.8CVSS9.6AI score0.0109EPSS