Shodan
Vulnerabilities
Vulnerable Software
Dlink:  >> Dir-820l  Security Vulnerabilities
CVE-2024-51186
D-Link DIR-820L 1.05b03 was discovered to contain a remote code execution (RCE) vulnerability via the ping_addr parameter in the ping_v4 and ping_v6 functions.
CVSS Score
8.0
EPSS Score
0.013
Published
2024-11-11
CVE-2023-44808
D-Link DIR-820L 1.05B03 has a stack overflow vulnerability in the sub_4507CC function.
CVSS Score
9.8
EPSS Score
0.026
Published
2023-10-16
CVE-2023-44809
D-Link device DIR-820L 1.05B03 is vulnerable to Insecure Permissions.
CVSS Score
9.8
EPSS Score
0.015
Published
2023-10-16
CVE-2023-44807
D-Link DIR-820L 1.05B03 has a stack overflow vulnerability in the cancelPing function.
CVSS Score
9.8
EPSS Score
0.025
Published
2023-10-06
CVE-2023-25282
A heap overflow vulnerability in D-Link DIR820LA1_FW106B02 allows attackers to cause a denial of service via the config.log_to_syslog and log_opt_dropPackets parameters to mydlink_api.ccp.
CVSS Score
6.5
EPSS Score
0.005
Published
2023-03-15
CVE-2023-25279
OS Command injection vulnerability in D-Link DIR820LA1_FW105B03 allows attackers to escalate privileges to root via a crafted payload.
CVSS Score
9.8
EPSS Score
0.721
Published
2023-03-13
CVE-2023-25283
A stack overflow vulnerability in D-Link DIR820LA1_FW106B02 allows attackers to cause a denial of service via the reserveDHCP_HostName_1.1.1.0 parameter to lan.asp.
CVSS Score
7.5
EPSS Score
0.006
Published
2023-03-13
CVE-2022-26258
Known exploited
D-Link DIR-820L 1.05B03 was discovered to contain remote command execution (RCE) vulnerability via HTTP POST to get set ccp.
CVSS Score
9.8
EPSS Score
0.899
Published
2022-03-28
CVE-2021-45382
Known exploited
A Remote Command Execution (RCE) vulnerability exists in all series H/W revisions D-link DIR-810L, DIR-820L/LW, DIR-826L, DIR-830L, and DIR-836L routers via the DDNS function in ncc2 binary file. Note: DIR-810L, DIR-820L, DIR-830L, DIR-826L, DIR-836L, all hardware revisions, have reached their End of Life ("EOL") /End of Service Life ("EOS") Life-Cycle and as such this issue will not be patched.
CVSS Score
9.8
EPSS Score
0.931
Published
2022-02-17
CVE-2015-1187
Known exploited
The ping tool in multiple D-Link and TRENDnet devices allow remote attackers to execute arbitrary code via the ping_addr parameter to ping.ccp.
CVSS Score
9.8
EPSS Score
0.782
Published
2017-09-21


Products
Pricing
Contact Us

Shodan ® - All rights reserved