threat
engine
.sh
Back
·
··:··
Home
/
Product
/
dlink dir 816 firmware
Product
dlink dir 816 firmware
73 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2026-8346
all versions
A vulnerability was detected in D-Link DIR-816 1.10CNB05_R1B011D88210. This affects the function portForward. Performing a manipul
6.3
MEDIUM
CVE-2026-8345
all versions
A security vulnerability has been detected in D-Link DIR-816 1.10CNB05_R1B011D88210. Affected by this issue is the function sub_44
6.3
MEDIUM
CVE-2026-8344
all versions
A weakness has been identified in D-Link DIR-816 1.10CNB05_R1B011D88210. Affected by this vulnerability is the function sub_445E7C
6.3
MEDIUM
CVE-2026-4184
all versions
A vulnerability was detected in D-Link DIR-816 1.10CNB05. Affected by this vulnerability is an unknown functionality of the file /
9.8
CRITICAL
CVE-2026-4183
all versions
A security vulnerability has been detected in D-Link DIR-816 1.10CNB05. Affected is an unknown function of the file /goform/form2W
9.8
CRITICAL
CVE-2026-4182
all versions
A weakness has been identified in D-Link DIR-816 1.10CNB05. This impacts an unknown function of the file /goform/form2Wl5RepeaterS
9.8
CRITICAL
CVE-2026-4181
all versions
A security flaw has been discovered in D-Link DIR-816 1.10CNB05. This affects an unknown function of the file /goform/form2Repeate
9.8
CRITICAL
CVE-2026-4180
all versions
A vulnerability was identified in D-Link DIR-816 1.10CNB05. The impacted element is an unknown function of the file redirect.asp o
7.3
HIGH
CVE-2025-60679
all versions
A stack buffer overflow vulnerability exists in the D-Link DIR-816A2 router firmware DIR-816A2_FWv1.10CNB05_R1B011D88210.img in th
8.8
HIGH
CVE-2025-61577
all versions
D-Link DIR-816A2_FWv1.10CNB05 was discovered to contain a stack overflow via the statuscheckpppoeuser parameter in the dir_setWanW
7.5
HIGH
CVE-2025-45931
all versions
An issue D-Link DIR-816-A2 DIR-816A2_FWv1.10CNB05_R1B011D88210 allows a remote attacker to execute arbitrary code via system() fun
9.8
CRITICAL
CVE-2025-5630
all versions
A vulnerability has been found in D-Link DIR-816 1.10CNB05 and classified as critical. This vulnerability affects unknown code of
9.8
CRITICAL
CVE-2025-5624
all versions
A vulnerability was found in D-Link DIR-816 1.10CNB05. It has been declared as critical. This vulnerability affects the function Q
9.8
CRITICAL
CVE-2025-5623
all versions
A vulnerability was found in D-Link DIR-816 1.10CNB05. It has been classified as critical. This affects the function qosClassifier
9.8
CRITICAL
CVE-2025-5622
all versions
A vulnerability was found in D-Link DIR-816 1.10CNB05 and classified as critical. Affected by this issue is the function wirelessA
9.8
CRITICAL
CVE-2025-5621
all versions
A vulnerability has been found in D-Link DIR-816 1.10CNB05 and classified as critical. Affected by this vulnerability is the funct
7.3
HIGH
CVE-2025-5620
all versions
A vulnerability, which was classified as critical, was found in D-Link DIR-816 1.10CNB05. Affected is the function setipsec_config
7.3
HIGH
CVE-2025-29743
all versions
D-Link DIR-816 A2V1.1.0B05 was found to contain a command injection in /goform/delRouting.
6.5
MEDIUM
CVE-2025-1392
all versions
A vulnerability has been found in D-Link DIR-816 1.01TO and classified as problematic. Affected by this vulnerability is an unknow
3.5
LOW
CVE-2024-57684
all versions
An access control issue in the component formDMZ.cgi of D-Link 816A2_FWv1.10CNB05_R1B011D88210 allows unauthenticated attackers to
9.8
CRITICAL
CVE-2024-57683
all versions
An access control issue in the component websURLFilterAddDel of D-Link 816A2_FWv1.10CNB05_R1B011D88210 allows unauthenticated atta
4.3
MEDIUM
CVE-2024-57682
all versions
An information disclosure vulnerability in the component d_status.asp of D-Link 816A2_FWv1.10CNB05_R1B011D88210 allows unauthentic
6.5
MEDIUM
CVE-2024-57681
all versions
An access control issue in the component form2alg.cgi of D-Link 816A2_FWv1.10CNB05_R1B011D88210 allows unauthenticated attackers t
5.3
MEDIUM
CVE-2024-57680
all versions
An access control issue in the component form2PortriggerRule.cgi of D-Link 816A2_FWv1.10CNB05_R1B011D88210 allows unauthenticated
5.3
MEDIUM
CVE-2024-57679
all versions
An access control issue in the component form2RepeaterSetup.cgi of D-Link 816A2_FWv1.10CNB05_R1B011D88210 allows unauthenticated a
6.5
MEDIUM
CVE-2024-57678
all versions
An access control issue in the component form2WlAc.cgi of D-Link 816A2_FWv1.10CNB05_R1B011D88210 allows unauthenticated attackers
6.5
MEDIUM
CVE-2024-57677
all versions
An access control issue in the component form2Wan.cgi of D-Link 816A2_FWv1.10CNB05_R1B011D88210 allows unauthenticated attackers t
6.5
MEDIUM
CVE-2024-57676
all versions
An access control issue in the component form2WlanBasicSetup.cgi of D-Link 816A2_FWv1.10CNB05_R1B011D88210 allows unauthenticated
6.5
MEDIUM
CVE-2024-13108
all versions
A vulnerability was found in D-Link DIR-816 A2 1.10CNB05_R1B011D88210. It has been declared as critical. This vulnerability affect
5.3
MEDIUM
CVE-2024-13107
all versions
A vulnerability was found in D-Link DIR-816 A2 1.10CNB05_R1B011D88210. It has been classified as critical. This affects an unknown
5.3
MEDIUM
CVE-2024-13106
all versions
A vulnerability was found in D-Link DIR-816 A2 1.10CNB05_R1B011D88210 and classified as critical. Affected by this issue is some u
5.3
MEDIUM
CVE-2024-13105
all versions
A vulnerability has been found in D-Link DIR-816 A2 1.10CNB05_R1B011D88210 and classified as critical. Affected by this vulnerabil
5.3
MEDIUM
CVE-2024-13104
all versions
A vulnerability, which was classified as critical, was found in D-Link DIR-816 A2 1.10CNB05_R1B011D88210. Affected is an unknown f
5.3
MEDIUM
CVE-2024-13103
all versions
A vulnerability, which was classified as critical, has been found in D-Link DIR-816 A2 1.10CNB05_R1B011D88210. This issue affects
5.3
MEDIUM
CVE-2024-13102
all versions
A vulnerability classified as critical was found in D-Link DIR-816 A2 1.10CNB05_R1B011D88210. This vulnerability affects unknown c
5.3
MEDIUM
CVE-2023-24331
all versions
Command Injection vulnerability in D-Link Dir 816 with firmware version DIR-816_A2_v1.10CNB04 allows attackers to run arbitrary co
9.8
CRITICAL
CVE-2024-24321
all versions
An issue in Dlink DIR-816A2 v.1.10CNB05 allows a remote attacker to execute arbitrary code via the wizardstep4_ssid_2 parameter in
9.8
CRITICAL
CVE-2024-0717
<= 2024-01-12
A vulnerability classified as critical was found in D-Link DAP-1360, DIR-300, DIR-615, DIR-615GF, DIR-615S, DIR-615T, DIR-620, DIR
5.3
MEDIUM
CVE-2023-39637
all versions
D-Link DIR-816 A2 1.10 B05 was discovered to contain a command injection vulnerability via the component /goform/Diagnosis.
9.8
CRITICAL
CVE-2022-43003
all versions
D-Link DIR-816 A2 1.10 B05 was discovered to contain a stack overflow via the pskValue parameter in the setRepeaterSecurity functi
9.8
CRITICAL
CVE-2022-43002
all versions
D-Link DIR-816 A2 1.10 B05 was discovered to contain a stack overflow via the wizardstep54_pskpwd parameter at /goform/form2Wizard
9.8
CRITICAL
CVE-2022-43001
all versions
D-Link DIR-816 A2 1.10 B05 was discovered to contain a stack overflow via the pskValue parameter in the setSecurity function.
9.8
CRITICAL
CVE-2022-43000
all versions
D-Link DIR-816 A2 1.10 B05 was discovered to contain a stack overflow via the wizardstep4_pskpwd parameter at /goform/form2WizardS
9.8
CRITICAL
CVE-2022-42999
all versions
D-Link DIR-816 A2 1.10 B05 was discovered to contain multiple command injection vulnerabilities via the admuser and admpass parame
7.5
HIGH
CVE-2022-42998
all versions
D-Link DIR-816 A2 1.10 B05 was discovered to contain a stack overflow via the srcip parameter at /goform/form2IPQoSTcAdd.
9.8
CRITICAL
CVE-2022-37130
all versions
In D-Link DIR-816 A2_v1.10CNB04, DIR-878 DIR_878_FW1.30B08.img a command injection vulnerability occurs in /goform/Diagnosis, afte
9.8
CRITICAL
CVE-2022-37129
all versions
D-Link DIR-816 A2_v1.10CNB04.img is vulnerable to Command Injection via /goform/SystemCommand. After the user passes in the comman
8.8
HIGH
CVE-2022-37123
all versions
D-link DIR-816 A2_v1.10CNB04.img is vulnerable to Command injection via /goform/form2userconfig.cgi.
8.8
HIGH
CVE-2022-36619
all versions
In D-link DIR-816 A2_v1.10CNB04.img,the network can be reset without authentication via /goform/setMAC.
7.5
HIGH
CVE-2022-37125
all versions
D-link DIR-816 A2_v1.10CNB04.img is vulnerable to Command injection via /goform/NTPSyncWithHost.
9.8
CRITICAL
CVE-2022-36620
all versions
D-link DIR-816 A2_v1.10CNB04, DIR-878 DIR_878_FW1.30B08.img is vulnerable to Buffer Overflow via /goform/addRouting.
7.5
HIGH
CVE-2022-37128
all versions
In D-Link DIR-816 A2_v1.10CNB04.img the network can be initialized without authentication via /goform/wizard_end.
9.8
CRITICAL
CVE-2022-37134
all versions
D-link DIR-816 A2_v1.10CNB04.img is vulnerable to Buffer Overflow via /goform/form2Wan.cgi. When wantype is 3, l2tp_usrname will b
9.8
CRITICAL
CVE-2022-37133
all versions
D-link DIR-816 A2_v1.10CNB04.img reboots the router without authentication via /goform/doReboot. No authentication is required, an
7.5
HIGH
CVE-2022-29327
all versions
D-Link DIR-816 A2_v1.10CNB04 was discovered to contain a stack overflow via the urladd parameter in /goform/websURLFilterAddDel.
9.8
CRITICAL
CVE-2022-29326
all versions
D-Link DIR-816 A2_v1.10CNB04 was discovered to contain a stack overflow via the addhostfilter parameter in /goform/websHostFilter.
9.8
CRITICAL
CVE-2022-29325
all versions
D-Link DIR-816 A2_v1.10CNB04 was discovered to contain a stack overflow via the addurlfilter parameter in /goform/websURLFilter.
9.8
CRITICAL
CVE-2022-29324
all versions
D-Link DIR-816 A2_v1.10CNB04 was discovered to contain a stack overflow via the proto parameter in /goform/form2IPQoSTcAdd.
9.8
CRITICAL
CVE-2022-29323
all versions
D-Link DIR-816 A2_v1.10CNB04 was discovered to contain a stack overflow via the MAC parameter in /goform/editassignment.
9.8
CRITICAL
CVE-2022-29322
all versions
D-Link DIR-816 A2_v1.10CNB04 was discovered to contain a stack overflow via the IPADDR and nvmacaddr parameters in /goform/form2Dh
9.8
CRITICAL
CVE-2022-29321
all versions
D-Link DIR-816 A2_v1.10CNB04 was discovered to contain a stack overflow via the lanip parameter in /goform/setNetworkLan.
9.8
CRITICAL
CVE-2022-28915
all versions
D-Link DIR-816 A2_v1.10CNB04 was discovered to contain a command injection vulnerability via the admuser and admpass parameters in
9.8
CRITICAL
CVE-2021-31326
all versions
D-Link DIR-816 A2 1.10 B05 allows unauthenticated attackers to arbitrarily reset the device via a crafted tokenid parameter to /go
9.8
CRITICAL
CVE-2021-39510
all versions
An issue was discovered in D-Link DIR816_A1_FW101CNB04 750m11ac wireless router, The HTTP request parameter is used in the handler
9.8
CRITICAL
CVE-2021-39509
all versions
An issue was discovered in D-Link DIR-816 DIR-816A2_FWv1.10CNB05_R1B011D88210 The HTTP request parameter is used in the handler fu
9.8
CRITICAL
CVE-2021-27114
all versions
An issue was discovered in D-Link DIR-816 A2 1.10 B05 devices. Within the handler function of the /goform/addassignment route, a v
9.8
CRITICAL
CVE-2021-27113
all versions
An issue was discovered in D-Link DIR-816 A2 1.10 B05 devices. An HTTP request parameter is used in command string construction wi
9.8
CRITICAL
CVE-2021-26810
all versions
D-link DIR-816 A2 v1.10 is affected by a remote code injection vulnerability. An HTTP request parameter can be used in command str
9.8
CRITICAL
CVE-2019-7642
all versions
D-Link routers with the mydlink feature have some web interfaces without authentication requirements. An attacker can remotely obt
7.5
HIGH
CVE-2019-10042
all versions
The D-Link DIR-816 A2 1.11 router only checks the random token when authorizing a goform request. An attacker can get this token f
7.5
HIGH
CVE-2019-10041
all versions
The D-Link DIR-816 A2 1.11 router only checks the random token when authorizing a goform request. An attacker can get this token f
9.8
CRITICAL
CVE-2019-10040
all versions
The D-Link DIR-816 A2 1.11 router only checks the random token when authorizing a goform request. An attacker can get this token f
9.8
CRITICAL
CVE-2019-10039
all versions
The D-Link DIR-816 A2 1.11 router only checks the random token when authorizing a goform request. An attacker can get this token f
9.8
CRITICAL
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin