Dir-878 Firmware Security Vulnerabilities and Issues — Dir-878 Firmware CVE List

Lucene search

DlinkDir-878 Firmware

10 matches found

CVE•added 2024/10/17 6:15 p.m.•43 views

CVE-2024-48629

D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command injection vulnerability via the IPAddress parameter in the SetGuestZoneRouterSettings function. This vulnerability allows attackers to execute arbitrary OS commands via a crafted POST request.

8CVSS8.7AI score0.01787EPSS

CVE•added 2024/10/17 6:15 p.m.•42 views

CVE-2024-48632

D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain multiple command injection vulnerabilities via the LocalIPAddress, TCPPorts, and UDPPorts parameters in the SetPortForwardingSettings function. This vulnerability allows attackers to execute arbitrary OS commands via a ...

8CVSS8.7AI score0.00733EPSS

CVE•added 2024/10/17 6:15 p.m.•42 views

CVE-2024-48633

D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain multiple command injection vulnerabilities via the ExternalPort, InternalPort, ProtocolNumber, and LocalIPAddress parameters in the SetVirtualServerSettings function. This vulnerability allows attackers to execute arbit...

8CVSS8.7AI score0.00733EPSS

CVE•added 2024/10/17 6:15 p.m.•41 views

CVE-2024-48634

D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command injection vulnerability via the key parameter in the SetWLanRadioSecurity function. This vulnerability allows attackers to execute arbitrary OS commands via a crafted POST request.

8CVSS8.7AI score0.00733EPSS

CVE•added 2024/10/17 6:15 p.m.•41 views

CVE-2024-48638

D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command injection vulnerability via the SubnetMask parameter in the SetGuestZoneRouterSettings function. This vulnerability allows attackers to execute arbitrary OS commands via a crafted POST request.

8CVSS8.7AI score0.01787EPSS

CVE•added 2024/10/17 6:15 p.m.•39 views

CVE-2024-48630

D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command injection vulnerability via the MacAddress parameter in the SetMACFilters2 function. This vulnerability allows attackers to execute arbitrary OS commands via a crafted POST request.

8CVSS8.7AI score0.00733EPSS

CVE•added 2024/10/17 6:15 p.m.•38 views

CVE-2024-48635

D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command injection vulnerability via the VLANID:2/VID parameter in the SetVLANSettings function. This vulnerability allows attackers to execute arbitrary OS commands via a crafted POST request.

8CVSS8.7AI score0.01787EPSS

CVE•added 2024/10/17 6:15 p.m.•36 views

CVE-2024-48636

D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command injection vulnerability via the VLANID:0/VID parameter in the SetVLANSettings function. This vulnerability allows attackers to execute arbitrary OS commands via a crafted POST request.

8CVSS8.7AI score0.01787EPSS

CVE•added 2024/10/17 6:15 p.m.•34 views

CVE-2024-48637

D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command injection vulnerability via the VLANID:1/VID parameter in the SetVLANSettings function. This vulnerability allows attackers to execute arbitrary OS commands via a crafted POST request.

8CVSS8.7AI score0.01787EPSS

CVE•added 2024/10/17 6:15 p.m.•33 views

CVE-2024-48631

D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command injection vulnerability via the SSID parameter in the SetWLanRadioSettings function. This vulnerability allows attackers to execute arbitrary OS commands via a crafted POST request.

8CVSS8.7AI score0.01787EPSS