Lucene search

K
DlinkDir-878 Firmware1.30b08

15 matches found

CVE
CVE
added 2022/04/11 8:15 p.m.84 views

CVE-2022-1262

A command injection vulnerability in the protest binary allows an attacker with access to the remote command line interface to execute arbitrary commands as root.

7.8CVSS8AI score0.00406EPSS
CVE
CVE
added 2022/02/04 2:15 a.m.59 views

CVE-2021-44880

D-Link devices DIR_878 DIR_878_FW1.30B08_Hotfix_02 and DIR_882 DIR_882_FW1.30B06_Hotfix_02 were discovered to contain a command injection vulnerability in the system function. This vulnerability allows attackers to execute arbitrary commands via a crafted HNAP1 POST request.

10CVSS9.9AI score0.16649EPSS
CVE
CVE
added 2022/02/04 2:15 a.m.55 views

CVE-2021-44882

D-Link device DIR_878_FW1.30B08_Hotfix_02 was discovered to contain a command injection vulnerability in the twsystem function. This vulnerability allows attackers to execute arbitrary commands via a crafted HNAP1 POST request.

10CVSS9.8AI score0.08686EPSS
CVE
CVE
added 2022/10/19 2:15 p.m.43 views

CVE-2022-43184

D-Link DIR878 1.30B08 Hotfix_04 was discovered to contain a command injection vulnerability via the component /bin/proc.cgi.

9.8CVSS9.7AI score0.01786EPSS
CVE
CVE
added 2023/04/09 9:15 p.m.43 views

CVE-2023-27720

D-Link DIR878 1.30B08 was discovered to contain a stack overflow in the sub_48d630 function. This vulnerability allows attackers to cause a Denial of Service (DoS) or execute arbitrary code via a crafted payload.

9.8CVSS9.7AI score0.0115EPSS
CVE
CVE
added 2024/10/17 6:15 p.m.43 views

CVE-2024-48629

D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command injection vulnerability via the IPAddress parameter in the SetGuestZoneRouterSettings function. This vulnerability allows attackers to execute arbitrary OS commands via a crafted POST request.

8CVSS8.7AI score0.01787EPSS
CVE
CVE
added 2024/10/17 6:15 p.m.42 views

CVE-2024-48632

D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain multiple command injection vulnerabilities via the LocalIPAddress, TCPPorts, and UDPPorts parameters in the SetPortForwardingSettings function. This vulnerability allows attackers to execute arbitrary OS commands via a ...

8CVSS8.7AI score0.00733EPSS
CVE
CVE
added 2024/10/17 6:15 p.m.42 views

CVE-2024-48633

D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain multiple command injection vulnerabilities via the ExternalPort, InternalPort, ProtocolNumber, and LocalIPAddress parameters in the SetVirtualServerSettings function. This vulnerability allows attackers to execute arbit...

8CVSS8.7AI score0.00733EPSS
CVE
CVE
added 2024/10/17 6:15 p.m.41 views

CVE-2024-48634

D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command injection vulnerability via the key parameter in the SetWLanRadioSecurity function. This vulnerability allows attackers to execute arbitrary OS commands via a crafted POST request.

8CVSS8.7AI score0.00733EPSS
CVE
CVE
added 2024/10/17 6:15 p.m.41 views

CVE-2024-48638

D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command injection vulnerability via the SubnetMask parameter in the SetGuestZoneRouterSettings function. This vulnerability allows attackers to execute arbitrary OS commands via a crafted POST request.

8CVSS8.7AI score0.01787EPSS
CVE
CVE
added 2024/10/17 6:15 p.m.39 views

CVE-2024-48630

D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command injection vulnerability via the MacAddress parameter in the SetMACFilters2 function. This vulnerability allows attackers to execute arbitrary OS commands via a crafted POST request.

8CVSS8.7AI score0.00733EPSS
CVE
CVE
added 2024/10/17 6:15 p.m.38 views

CVE-2024-48635

D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command injection vulnerability via the VLANID:2/VID parameter in the SetVLANSettings function. This vulnerability allows attackers to execute arbitrary OS commands via a crafted POST request.

8CVSS8.7AI score0.01787EPSS
CVE
CVE
added 2024/10/17 6:15 p.m.36 views

CVE-2024-48636

D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command injection vulnerability via the VLANID:0/VID parameter in the SetVLANSettings function. This vulnerability allows attackers to execute arbitrary OS commands via a crafted POST request.

8CVSS8.7AI score0.01787EPSS
CVE
CVE
added 2024/10/17 6:15 p.m.34 views

CVE-2024-48637

D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command injection vulnerability via the VLANID:1/VID parameter in the SetVLANSettings function. This vulnerability allows attackers to execute arbitrary OS commands via a crafted POST request.

8CVSS8.7AI score0.01787EPSS
CVE
CVE
added 2024/10/17 6:15 p.m.33 views

CVE-2024-48631

D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command injection vulnerability via the SSID parameter in the SetWLanRadioSettings function. This vulnerability allows attackers to execute arbitrary OS commands via a crafted POST request.

8CVSS8.7AI score0.01787EPSS