threat
engine
.sh
Back
·
··:··
Home
/
Product
/
dlink dir 878 firmware
Product
dlink dir 878 firmware
46 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2025-60676
all versions
An unauthenticated command injection vulnerability exists in the D-Link DIR-878A1 router firmware FW101B04.bin. The vulnerability
6.5
MEDIUM
CVE-2025-60674
all versions
A stack buffer overflow vulnerability exists in the D-Link DIR-878A1 router firmware FW101B04.bin in the rc binary's USB storage h
6.8
MEDIUM
CVE-2025-60673
all versions
An unauthenticated command injection vulnerability exists in the D-Link DIR-878A1 router firmware FW101B04.bin. The vulnerability
6.5
MEDIUM
CVE-2025-60672
all versions
An unauthenticated command injection vulnerability exists in the D-Link DIR-878A1 router firmware FW101B04.bin. The vulnerability
6.5
MEDIUM
CVE-2025-0481
all versions
A vulnerability classified as problematic has been found in D-Link DIR-878 1.03. Affected is an unknown function of the file /dllo
5.3
MEDIUM
CVE-2024-48638
all versions
D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command injection vulnerability via the SubnetMa
8.0
HIGH
CVE-2024-48637
all versions
D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command injection vulnerability via the VLANID:1
8.0
HIGH
CVE-2024-48636
all versions
D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command injection vulnerability via the VLANID:0
8.0
HIGH
CVE-2024-48635
all versions
D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command injection vulnerability via the VLANID:2
8.0
HIGH
CVE-2024-48634
all versions
D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command injection vulnerability via the key para
8.0
HIGH
CVE-2024-48633
all versions
D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain multiple command injection vulnerabilities via the
8.0
HIGH
CVE-2024-48632
all versions
D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain multiple command injection vulnerabilities via the
8.0
HIGH
CVE-2024-48631
all versions
D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command injection vulnerability via the SSID par
8.0
HIGH
CVE-2024-48630
all versions
D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command injection vulnerability via the MacAddre
8.0
HIGH
CVE-2024-48629
all versions
D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command injection vulnerability via the IPAddres
8.0
HIGH
CVE-2024-0717
<= 2024-01-12
A vulnerability classified as critical was found in D-Link DAP-1360, DIR-300, DIR-615, DIR-615GF, DIR-615S, DIR-615T, DIR-620, DIR
5.3
MEDIUM
CVE-2023-27720
all versions
D-Link DIR878 1.30B08 was discovered to contain a stack overflow in the sub_48d630 function. This vulnerability allows attackers t
9.8
CRITICAL
CVE-2023-27719
all versions
D-Link DIR878 1.30B08 was discovered to contain a stack overflow in the sub_478360 function. This vulnerability allows attackers t
9.8
CRITICAL
CVE-2023-27718
all versions
D-Link DIR878 1.30B08 was discovered to contain a stack overflow in the sub_498308 function. This vulnerability allows attackers t
9.8
CRITICAL
CVE-2023-24800
all versions
D-Link DIR878 DIR_878_FW120B05 was discovered to contain a stack overflow in the sub_495220 function. This vulnerability allows at
9.8
CRITICAL
CVE-2023-24799
all versions
D-Link DIR878 DIR_878_FW120B05 was discovered to contain a stack overflow in the sub_48AF78 function. This vulnerability allows at
9.8
CRITICAL
CVE-2023-24798
all versions
D-Link DIR878 DIR_878_FW120B05 was discovered to contain a stack overflow in the sub_475FB0 function. This vulnerability allows at
9.8
CRITICAL
CVE-2022-48108
all versions
D-Link DIR_878_FW1.30B08 was discovered to contain a command injection vulnerability via the component /SetNetworkSettings/SubnetM
9.8
CRITICAL
CVE-2022-48107
all versions
D-Link DIR_878_FW1.30B08 was discovered to contain a command injection vulnerability via the component /setnetworksettings/IPAddre
9.8
CRITICAL
CVE-2022-41140
<= 1.30b06
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of multiple D-Link router
8.8
HIGH
CVE-2022-44801
all versions
D-Link DIR-878 1.02B05 is vulnerable to Incorrect Access Control.
9.8
CRITICAL
CVE-2022-44202
all versions
D-Link DIR878 1.02B04 and 1.02B05 are vulnerable to Buffer Overflow.
9.8
CRITICAL
CVE-2022-43184
all versions
D-Link DIR878 1.30B08 Hotfix_04 was discovered to contain a command injection vulnerability via the component /bin/proc.cgi.
9.8
CRITICAL
CVE-2022-1262
all versions
A command injection vulnerability in the protest binary allows an attacker with access to the remote command line interface to exe
7.8
HIGH
CVE-2022-26670
<= 1.20b05
D-Link DIR-878 has inadequate filtering for special characters in the webpage input field. An unauthenticated LAN attacker can per
8.8
HIGH
CVE-2021-44882
<= 1.20b05
D-Link device DIR_878_FW1.30B08_Hotfix_02 was discovered to contain a command injection vulnerability in the twsystem function. Th
9.8
CRITICAL
CVE-2021-44880
<= 1.20b05
D-Link devices DIR_878 DIR_878_FW1.30B08_Hotfix_02 and DIR_882 DIR_882_FW1.30B06_Hotfix_02 were discovered to contain a command in
9.8
CRITICAL
CVE-2021-30072
<= 1.30b08
An issue was discovered in prog.cgi on D-Link DIR-878 1.30B08 devices. Because strcat is misused, there is a stack-based buffer ov
9.8
CRITICAL
CVE-2020-15633
<= 1.20b05
This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of D-Link DIR-867, DIR-878
8.8
HIGH
CVE-2020-8864
<= 1.20b03
This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of D-Link DIR-867, DIR-878
8.8
HIGH
CVE-2020-8863
<= 1.20b03
This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of D-Link DIR-867, DIR-878
8.8
HIGH
CVE-2019-9125
all versions
An issue was discovered on D-Link DIR-878 1.12B01 devices. Because strncpy is misused, there is a stack-based buffer overflow vuln
9.8
CRITICAL
CVE-2019-9124
all versions
An issue was discovered on D-Link DIR-878 1.12B01 devices. At the /HNAP1 URI, an attacker can log in with a blank password.
9.8
CRITICAL
CVE-2019-8319
all versions
An issue was discovered on D-Link DIR-878 devices with firmware 1.12A1. This issue is a Command Injection allowing a remote attack
8.8
HIGH
CVE-2019-8318
all versions
An issue was discovered on D-Link DIR-878 devices with firmware 1.12A1. This issue is a Command Injection allowing a remote attack
8.8
HIGH
CVE-2019-8317
all versions
An issue was discovered on D-Link DIR-878 devices with firmware 1.12A1. This issue is a Command Injection allowing a remote attack
8.8
HIGH
CVE-2019-8316
all versions
An issue was discovered on D-Link DIR-878 devices with firmware 1.12A1. This issue is a Command Injection allowing a remote attack
8.8
HIGH
CVE-2019-8315
all versions
An issue was discovered on D-Link DIR-878 devices with firmware 1.12A1. This issue is a Command Injection allowing a remote attack
8.8
HIGH
CVE-2019-8314
all versions
An issue was discovered on D-Link DIR-878 devices with firmware 1.12A1. This issue is a Command Injection allowing a remote attack
8.8
HIGH
CVE-2019-8313
all versions
An issue was discovered on D-Link DIR-878 devices with firmware 1.12A1. This issue is a Command Injection allowing a remote attack
8.8
HIGH
CVE-2019-8312
all versions
An issue was discovered on D-Link DIR-878 devices with firmware 1.12A1. This issue is a Command Injection allowing a remote attack
8.8
HIGH
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin