threat
engine
.sh
Back
·
··:··
Home
/
Product
/
dlink dir 865l firmware
Product
dlink dir 865l firmware
18 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2020-25786
all versions
webinc/js/info.php on D-Link DIR-816L 2.06.B09_BETA and DIR-803 1.04.B02 devices allows XSS via the HTTP Referer header. NOTE: Thi
6.1
MEDIUM
CVE-2020-13787
all versions
D-Link DIR-865L Ax 1.20B01 Beta devices have Cleartext Transmission of Sensitive Information.
7.5
HIGH
CVE-2020-13786
all versions
D-Link DIR-865L Ax 1.20B01 Beta devices allow CSRF.
8.8
HIGH
CVE-2020-13785
all versions
D-Link DIR-865L Ax 1.20B01 Beta devices have Inadequate Encryption Strength.
7.5
HIGH
CVE-2020-13784
all versions
D-Link DIR-865L Ax 1.20B01 Beta devices have a predictable seed in a Pseudo-Random Number Generator.
7.5
HIGH
CVE-2020-13783
all versions
D-Link DIR-865L Ax 1.20B01 Beta devices have Cleartext Storage of Sensitive Information.
7.5
HIGH
CVE-2020-13782
all versions
D-Link DIR-865L Ax 1.20B01 Beta devices allow Command Injection.
8.8
HIGH
CVE-2013-3096
all versions
D-Link DIR865L v1.03 suffers from an "Unauthenticated Hardware Linking" vulnerability.
5.9
MEDIUM
CVE-2019-20213
<= 1.07b01
D-Link DIR-859 routers before v1.07b03_beta allow Unauthenticated Information Disclosure via the AUTHORIZED_GROUP=1%0a value, as d
7.5
HIGH
CVE-2019-17621
<= 1.07b01
The UPnP endpoint URL /gena.cgi in the D-Link DIR-859 Wi-Fi router 1.05 and 1.06B01 Beta01 allows an Unauthenticated remote attack
9.8
CRITICAL
CVE-2013-4857
all versions
D-Link DIR-865L has PHP File Inclusion in the router xml file.
9.8
CRITICAL
CVE-2013-4856
all versions
D-Link DIR-865L has Information Disclosure.
6.5
MEDIUM
CVE-2013-4855
all versions
D-Link DIR-865L has SMB Symlink Traversal due to misconfiguration in the SMB service allowing symbolic links to be created to loca
8.8
HIGH
CVE-2018-6530
<= 1.08b01
OS command injection vulnerability in soap.cgi (soapcgi_main in cgibin) in D-Link DIR-880L DIR-880L_REVA_FIRMWARE_PATCH_1.08B04 an
9.8
CRITICAL
CVE-2018-6529
<= reva_firmware_patch_1.08.b01
XSS vulnerability in htdocs/webinc/js/bsc_sms_inbox.php in D-Link DIR-868L DIR868LA1_FW112b04 and previous versions, DIR-865L DIR-
6.1
MEDIUM
CVE-2018-6528
<= reva_firmware_patch_1.08.b01
XSS vulnerability in htdocs/webinc/body/bsc_sms_send.php in D-Link DIR-868L DIR868LA1_FW112b04 and previous versions, DIR-865L DIR
6.1
MEDIUM
CVE-2018-6527
<= reva_firmware_patch_1.08.b01
XSS vulnerability in htdocs/webinc/js/adv_parent_ctrl_map.php in D-Link DIR-868L DIR868LA1_FW112b04 and previous versions, DIR-865
6.1
MEDIUM
CVE-2013-3095
<= 1.05
Multiple cross-site request forgery (CSRF) vulnerabilities in D-Link DIR865L router (Rev. A1) with firmware before 1.05b07 allow r
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin