Dir-823g Firmware Security Vulnerabilities and Issues — Dir-823g Firmware CVE List

Lucene search

DlinkDir-823g Firmware

17 matches found

CVE•added 2023/10/05 4:15 p.m.•104 views

CVE-2023-44837

D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow via the Password parameter in the SetWanSettings function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input.

7.5CVSS7.5AI score0.0034EPSS

CVE•added 2023/10/05 4:15 p.m.•93 views

CVE-2023-44839

D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow via the Encryption parameter in the SetWLanRadioSecurity function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input.

7.5CVSS7.5AI score0.00292EPSS

CVE•added 2023/10/05 4:15 p.m.•89 views

CVE-2023-44828

D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow via the CurrentPassword parameter in the CheckPasswdSettings function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input.

7.5CVSS7.5AI score0.0034EPSS

CVE•added 2023/10/05 4:15 p.m.•89 views

CVE-2023-44836

D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow via the SSID parameter in the SetWLanRadioSettings function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input.

7.5CVSS7.5AI score0.0034EPSS

CVE•added 2023/10/05 4:15 p.m.•81 views

CVE-2023-44838

D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow via the TXPower parameter in the SetWLanRadioSettings function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input.

7.5CVSS7.5AI score0.0034EPSS

CVE•added 2024/09/06 4:15 p.m.•50 views

CVE-2024-44408

D-Link DIR-823G v1.0.2B05_20181207 is vulnerable to Information Disclosure. The device allows unauthorized configuration file downloads, and the downloaded configuration files contain plaintext user passwords.

7.5CVSS6.8AI score0.0053EPSS

CVE•added 2023/10/05 4:15 p.m.•47 views

CVE-2023-44832

D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow via the MacAddress parameter in the SetWanSettings function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input.

7.5CVSS7.5AI score0.00495EPSS

CVE•added 2023/10/05 4:15 p.m.•42 views

CVE-2023-44834

D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow via the StartTime parameter in the SetParentsControlInfo function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input.

7.5CVSS7.5AI score0.0034EPSS

CVE•added 2023/10/05 4:15 p.m.•41 views

CVE-2023-44831

D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow via the Type parameter in the SetWLanRadioSettings function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input.

7.5CVSS7.5AI score0.00495EPSS

CVE•added 2023/10/05 4:15 p.m.•40 views

CVE-2023-44833

D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow via the GuardInt parameter in the SetWLanRadioSettings function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input.

7.5CVSS7.5AI score0.0034EPSS

CVE•added 2023/10/05 4:15 p.m.•40 views

CVE-2023-44835

D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow via the Mac parameter in the SetParentsControlInfo function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input.

7.5CVSS7.5AI score0.0034EPSS

CVE•added 2019/02/05 12:29 a.m.•38 views

CVE-2019-7389

An issue was discovered in /bin/goahead on D-Link DIR-823G devices with the firmware 1.02B03. There is incorrect access control allowing remote attackers to reset the router without authentication via the SetFactoryDefault HNAP API. Consequently, an attacker can achieve a denial-of-service attack w...

7.8CVSS7.7AI score0.03127EPSS

CVE•added 2023/06/28 3:15 p.m.•36 views

CVE-2023-26615

D-Link DIR-823G firmware version 1.02B05 has a password reset vulnerability, which originates from the SetMultipleActions API, allowing unauthorized attackers to reset the WEB page management password.

7.5CVSS8AI score0.00084EPSS

CVE•added 2023/10/05 4:15 p.m.•36 views

CVE-2023-44830

D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow via the EndTime parameter in the SetParentsControlInfo function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input.

7.5CVSS7.5AI score0.0034EPSS

CVE•added 2019/02/17 4:29 a.m.•32 views

CVE-2019-8392

An issue was discovered on D-Link DIR-823G devices with firmware 1.02B03. There is incorrect access control allowing remote attackers to enable Guest Wi-Fi via the SetWLanRadioSettings HNAP API to the web service provided by /bin/goahead.

7.5CVSS7.6AI score0.00365EPSS

CVE•added 2019/02/05 12:29 a.m.•30 views

CVE-2019-7388

An issue was discovered in /bin/goahead on D-Link DIR-823G devices with firmware 1.02B03. There is incorrect access control allowing remote attackers to get sensitive information (such as MAC address) about all clients in the WLAN via the GetClientInfo HNAP API. Consequently, an attacker can achiev...

7.5CVSS7.3AI score0.01515EPSS

CVE•added 2023/10/05 4:15 p.m.•29 views

CVE-2023-44829

D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow via the AdminPassword parameter in the SetDeviceSettings function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input.

7.5CVSS7.5AI score0.0034EPSS