Dir-818lw Firmware Security Vulnerabilities and Issues — Dir-818lw Firmware CVE List

Lucene search

DlinkDir-818lw Firmware

5 matches found

CVE•added 2019/01/02 6:29 p.m.•147 views

CVE-2018-20114

On D-Link DIR-818LW Rev.A 2.05.B03 and DIR-860L Rev.B 2.03.B03 devices, unauthenticated remote OS command execution can occur in the soap.cgi service of the cgibin binary via an "&&" substring in the service parameter. NOTE: this issue exists because of an incomplete fix for CVE-2018-6530.

10CVSS9.7AI score0.9376EPSS

CVE•added 2019/07/10 8:15 p.m.•139 views

CVE-2019-13482

An issue was discovered on D-Link DIR-818LW devices with firmware 2.06betab01. There is a command injection in HNAP1 (exploitable with Authentication) via shell metacharacters in the Type field to SetWanSettings.

9CVSS8.9AI score0.07181EPSS

CVE•added 2019/07/10 8:15 p.m.•136 views

CVE-2019-13481

9CVSS8.9AI score0.07181EPSS

CVE•added 2019/06/10 6:29 p.m.•47 views

CVE-2019-12786

An issue was discovered on D-Link DIR-818LW devices from 2.05.B03 to 2.06B01 BETA. There is a command injection in HNAP1 SetWanSettings via an XML injection of the value of the IPAddress key.

8.8CVSS8.9AI score0.02838EPSS

CVE•added 2019/06/10 6:29 p.m.•39 views

CVE-2019-12787

An issue was discovered on D-Link DIR-818LW devices from 2.05.B03 to 2.06B01 BETA. There is a command injection in HNAP1 SetWanSettings via an XML injection of the value of the Gateway key.

8.8CVSS8.9AI score0.02838EPSS