Shodan
Vulnerabilities
Vulnerable Software
Dlink:  >> Dir-823g  Security Vulnerabilities
CVE-2023-44836
D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow via the SSID parameter in the SetWLanRadioSettings function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input.
CVSS Score
7.5
EPSS Score
0.003
Published
2023-10-05
CVE-2023-43241
D-Link DIR-823G v1.0.2B05 was discovered to contain a stack overflow via parameter TXPower and GuardInt in SetWLanRadioSecurity.
CVSS Score
9.8
EPSS Score
0.025
Published
2023-09-21
CVE-2023-43235
D-Link DIR-823G v1.0.2B05 was discovered to contain a stack overflow via parameter StartTime and EndTime in SetWifiDownSettings.
CVSS Score
9.8
EPSS Score
0.021
Published
2023-09-21
CVE-2023-26612
D-Link DIR-823G firmware version 1.02B05 has a buffer overflow vulnerability, which originates from the HostName field in SetParentsControlInfo.
CVSS Score
9.8
EPSS Score
0.008
Published
2023-06-29
CVE-2023-26613
An OS command injection vulnerability in D-Link DIR-823G firmware version 1.02B05 allows unauthorized attackers to execute arbitrary operating system commands via a crafted GET request to EXCU_SHELL.
CVSS Score
9.8
EPSS Score
0.663
Published
2023-06-29
CVE-2023-26616
D-Link DIR-823G firmware version 1.02B05 has a buffer overflow vulnerability, which originates from the URL field in SetParentsControlInfo.
CVSS Score
9.8
EPSS Score
0.008
Published
2023-06-29
CVE-2023-26615
D-Link DIR-823G firmware version 1.02B05 has a password reset vulnerability, which originates from the SetMultipleActions API, allowing unauthorized attackers to reset the WEB page management password.
CVSS Score
7.5
EPSS Score
0.001
Published
2023-06-28
CVE-2023-29665
D-Link DIR823G_V1.0.2B05 was discovered to contain a stack overflow via the NewPassword parameters in SetPasswdSettings.
CVSS Score
9.8
EPSS Score
0.007
Published
2023-04-17
CVE-2022-44808
A command injection vulnerability has been found on D-Link DIR-823G devices with firmware version 1.02B03 that allows an attacker to execute arbitrary operating system commands through well-designed /HNAP1 requests. Before the HNAP API function can process the request, the system function executes an untrusted command that triggers the vulnerability.
CVSS Score
9.8
EPSS Score
0.198
Published
2022-11-22
CVE-2022-44201
D-Link DIR823G 1.02B05 is vulnerable to Commad Injection.
CVSS Score
9.8
EPSS Score
0.021
Published
2022-11-22


Products
Pricing
Contact Us

Shodan ® - All rights reserved