Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Dir\-823g_firmware
(Dlink)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 38 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2023-06-29 | CVE-2023-26616 | D-Link DIR-823G firmware version 1.02B05 has a buffer overflow vulnerability, which originates from the URL field in SetParentsControlInfo. | Dir\-823g_firmware | 9.8 | ||
| 2023-06-28 | CVE-2023-26615 | D-Link DIR-823G firmware version 1.02B05 has a password reset vulnerability, which originates from the SetMultipleActions API, allowing unauthorized attackers to reset the WEB page management password. | Dir\-823g_firmware | 7.5 | ||
| 2023-04-17 | CVE-2023-29665 | D-Link DIR823G_V1.0.2B05 was discovered to contain a stack overflow via the NewPassword parameters in SetPasswdSettings. | Dir\-823g_firmware | 9.8 | ||
| 2022-11-22 | CVE-2022-44201 | D-Link DIR823G 1.02B05 is vulnerable to Commad Injection. | Dir\-823g_firmware | 9.8 | ||
| 2022-11-03 | CVE-2022-43109 | D-Link DIR-823G v1.0.2 was found to contain a command injection vulnerability in the function SetNetworkTomographySettings. This vulnerability allows attackers to execute arbitrary commands via a crafted packet. | Dir\-823g_firmware | 9.8 | ||
| 2022-04-07 | CVE-2021-43474 | An Access Control vulnerability exists in D-Link DIR-823G REVA1 1.02B05 (Lastest) via any parameter in the HNAP1 function | Dir\-823g_firmware | 9.8 | ||
| 2021-11-04 | CVE-2020-25368 | A command injection vulnerability was discovered in the HNAP1 protocol in D-Link DIR-823G devices with firmware V1.0.2B05. An attacker is able to execute arbitrary web scripts via shell metacharacters in the PrivateLogin field to Login. | Dir\-823g_firmware | 9.8 | ||
| 2021-11-04 | CVE-2020-25366 | An issue in the component /cgi-bin/upload_firmware.cgi of D-Link DIR-823G REVA1 1.02B05 allows attackers to cause a denial of service (DoS) via unspecified vectors. | Dir\-823g_firmware | 9.1 | ||
| 2021-11-04 | CVE-2020-25367 | A command injection vulnerability was discovered in the HNAP1 protocol in D-Link DIR-823G devices with firmware V1.0.2B05. An attacker is able to execute arbitrary web scripts via shell metacharacters in the Captcha field to Login. | Dir\-823g_firmware | 9.8 | ||
| 2019-08-23 | CVE-2019-15530 | An issue was discovered on D-Link DIR-823G devices with firmware V1.0.2B05. There is a command injection in HNAP1 (exploitable with Authentication) via shell metacharacters in the LoginPassword field to Login. | Dir\-823g_firmware | 8.8 |