Dir-850l Firmware Security Vulnerabilities and Issues — Dir-850l Firmware CVE List

Lucene search

DlinkDir-850l Firmware

10 matches found

CVE•added 2022/03/04 3:15 p.m.•85 views

CVE-2021-46378

DLink DIR850 ET850-1.08TRb03 is affected by an incorrect access control vulnerability through an unauthenticated remote configuration download.

7.5CVSS7.6AI score0.33056EPSS

CVE•added 2017/09/13 5:29 p.m.•47 views

CVE-2017-14423

htdocs/parentalcontrols/bind.php on D-Link DIR-850L REV. A (with firmware through FW114WWb07_h2ab_beta1) devices does not prevent unauthenticated nonce-guessing attacks, which makes it easier for remote attackers to change the DNS configuration via a series of requests.

7.5CVSS8AI score0.00172EPSS

CVE•added 2017/09/13 5:29 p.m.•46 views

CVE-2017-14428

D-Link DIR-850L REV. A (with firmware through FW114WWb07_h2ab_beta1) and REV. B (with firmware through FW208WWb02) devices have 0666 /var/run/hostapd* permissions.

7.8CVSS8.3AI score0.00061EPSS

CVE•added 2017/09/13 5:29 p.m.•45 views

CVE-2017-14427

D-Link DIR-850L REV. A (with firmware through FW114WWb07_h2ab_beta1) and REV. B (with firmware through FW208WWb02) devices have 0666 /var/run/storage_account_root permissions.

7.8CVSS8.3AI score0.00061EPSS

CVE•added 2017/09/13 5:29 p.m.•44 views

CVE-2017-14430

D-Link DIR-850L REV. A (with firmware through FW114WWb07_h2ab_beta1) and REV. B (with firmware through FW208WWb02) devices allow remote attackers to cause a denial of service (daemon crash) via crafted LAN traffic.

7.5CVSS7.8AI score0.00468EPSS

CVE•added 2019/03/25 10:29 p.m.•44 views

CVE-2019-7642

D-Link routers with the mydlink feature have some web interfaces without authentication requirements. An attacker can remotely obtain users' DNS query logs and login logs. Vulnerable targets include but are not limited to the latest firmware versions of DIR-817LW (A1-1.04), DIR-816L (B1-2.06), DIR-...

7.5CVSS7.6AI score0.1087EPSS

CVE•added 2017/09/13 5:29 p.m.•43 views

CVE-2017-14422

D-Link DIR-850L REV. A (with firmware through FW114WWb07_h2ab_beta1) and REV. B (with firmware through FW208WWb02) devices use the same hardcoded /etc/stunnel.key private key across different customers' installations, which allows remote attackers to defeat the HTTPS cryptographic protection mechan...

7.5CVSS8AI score0.00424EPSS

CVE•added 2017/09/13 5:29 p.m.•42 views

CVE-2017-14424

D-Link DIR-850L REV. A (with firmware through FW114WWb07_h2ab_beta1) and REV. B (with firmware through FW208WWb02) devices have 0666 /var/passwd permissions.

7.8CVSS8.3AI score0.00061EPSS

CVE•added 2017/09/13 5:29 p.m.•40 views

CVE-2017-14426

D-Link DIR-850L REV. A (with firmware through FW114WWb07_h2ab_beta1) and REV. B (with firmware through FW208WWb02) devices have 0644 /var/etc/shadow (aka the /etc/shadow symlink target) permissions.

7.8CVSS8.3AI score0.00061EPSS

CVE•added 2017/09/13 5:29 p.m.•39 views

CVE-2017-14425

D-Link DIR-850L REV. A (with firmware through FW114WWb07_h2ab_beta1) and REV. B (with firmware through FW208WWb02) devices have 0666 /var/etc/hnapasswd permissions.

7.8CVSS8.3AI score0.00061EPSS