CVE-2026-3485

all versions

A flaw has been found in D-Link DIR-868L 110b03. This affects the function sub_1BF84 of the component SSDP Service. This manipulat

9.8CRITICAL

CVE-2025-63932

all versions

D-Link Router DIR-868L A1 FW106KRb01.bin has an unauthenticated remote code execution vulnerability in the cgibin binary. The HNAP

7.3HIGH

CVE-2025-55583

all versions

D-Link DIR-868L B1 router firmware version FW2.05WWB02 contains an unauthenticated OS command injection vulnerability in the filea

9.8CRITICAL

CVE-2023-39668

all versions

D-Link DIR-868L fw_revA_1-12_eu_multi_20170316 was discovered to contain a buffer overflow via the param_2 parameter in the inet_n

9.8CRITICAL

CVE-2023-39667

all versions

D-Link DIR-868L fw_revA_1-12_eu_multi_20170316 was discovered to contain a buffer overflow via the param_2 parameter in the FUN_00

9.8CRITICAL

CVE-2023-39665

all versions

D-Link DIR-868L fw_revA_1-12_eu_multi_20170316 was discovered to contain a buffer overflow via the acStack_50 parameter.

9.8CRITICAL

CVE-2023-29856

all versions

D-Link DIR-868L Hardware version A1, firmware version 1.12 is vulnerable to Buffer Overflow. The vulnerability is in scandir.sgi b

9.8CRITICAL

CVE-2020-29321

all versions

The D-Link router DIR-868L 3.01 is vulnerable to credentials disclosure in telnet service through decompilation of firmware, that

7.5HIGH

CVE-2019-20213

<= 1.12b04

D-Link DIR-859 routers before v1.07b03_beta allow Unauthenticated Information Disclosure via the AUTHORIZED_GROUP=1%0a value, as d

7.5HIGH

CVE-2019-17621

<= 1.12b04

The UPnP endpoint URL /gena.cgi in the D-Link DIR-859 Wi-Fi router 1.05 and 1.06B01 Beta01 allows an Unauthenticated remote attack

9.8CRITICAL

CVE-2017-14948

all versions

Certain D-Link products are affected by: Buffer Overflow. This affects DIR-880L 1.08B04 and DIR-895 L/R 1.13b03. The impact is: ex

9.8CRITICAL

CVE-2019-16190

<= 2.03

SharePort Web Access on D-Link DIR-868L REVB through 2.03, DIR-885L REVA through 1.20, and DIR-895L REVA through 1.21 devices allo

9.8CRITICAL

CVE-2018-19988

all versions

In the /HNAP1/SetClientInfoDemo message, the AudioMute and AudioEnable parameters are vulnerable, and the vulnerabilities affect D

9.8CRITICAL

CVE-2018-19987

all versions

D-Link DIR-822 Rev.B 202KRb06, DIR-822 Rev.C 3.10B06, DIR-860L Rev.B 2.03.B03, DIR-868L Rev.B 2.05B02, DIR-880L Rev.A 1.20B01_01_i

9.8CRITICAL

CVE-2019-7642

all versions

D-Link routers with the mydlink feature have some web interfaces without authentication requirements. An attacker can remotely obt

7.5HIGH

CVE-2016-6563

all versions

Processing malformed SOAP messages when performing the HNAP Login action causes a buffer overflow in the stack in some D-Link DIR

9.8CRITICAL

CVE-2018-10957

all versions

CSRF exists on D-Link DIR-868L devices, leading to (for example) a change to the Admin password. hedwig.cgi and pigwidgeon.cgi are

8.8HIGH

CVE-2018-6530

<= 1.12b04

OS command injection vulnerability in soap.cgi (soapcgi_main in cgibin) in D-Link DIR-880L DIR-880L_REVA_FIRMWARE_PATCH_1.08B04 an

9.8CRITICAL

CVE-2018-6529

<= a1_fw112b04

XSS vulnerability in htdocs/webinc/js/bsc_sms_inbox.php in D-Link DIR-868L DIR868LA1_FW112b04 and previous versions, DIR-865L DIR-

6.1MEDIUM

CVE-2018-6528

<= a1_fw112b04

XSS vulnerability in htdocs/webinc/body/bsc_sms_send.php in D-Link DIR-868L DIR868LA1_FW112b04 and previous versions, DIR-865L DIR

6.1MEDIUM

CVE-2018-6527

<= a1_fw112b04

XSS vulnerability in htdocs/webinc/js/adv_parent_ctrl_map.php in D-Link DIR-868L DIR868LA1_FW112b04 and previous versions, DIR-865

6.1MEDIUM

CVE-2016-5681

<= 2.03

Stack-based buffer overflow in dws/api/Login on D-Link DIR-850L B1 2.07 before 2.07WWB05, DIR-817 Ax, DIR-818LW Bx before 2.05b03b

9.8CRITICAL