Shodan
Vulnerabilities
Vulnerable Software
Dlink:  >> Dir-823 Pro Firmware  Security Vulnerabilities
CVE-2025-45729
D-Link DIR-823-Pro 1.02 has improper permission control, allowing unauthorized users to turn on and access Telnet services.
CVSS Score
6.3
EPSS Score
0.001
Published
2025-06-27
CVE-2022-28573
D-Link DIR-823-Pro v1.0.2 was discovered to contain a command injection vulnerability in the function SetNTPserverSeting. This vulnerability allows attackers to execute arbitrary commands via the system_time_timezone parameter.
CVSS Score
9.8
EPSS Score
0.514
Published
2022-05-02
CVE-2021-46452
D-Link device D-Link DIR-823-Pro v1.0.2 was discovered to contain a command injection vulnerability in the function SetNetworkTomographySettings. This vulnerability allows attackers to execute arbitrary commands via the tomography_ping_address, tomography_ping_number, tomography_ping_size, tomography_ping_timeout, and tomography_ping_ttl parameters.
CVSS Score
9.8
EPSS Score
0.059
Published
2022-02-04
CVE-2021-46453
D-Link device D-Link DIR-823-Pro v1.0.2 was discovered to contain a command injection vulnerability in the function SetStaticRouteSettings. This vulnerability allows attackers to execute arbitrary commands via the staticroute_list parameter.
CVSS Score
9.8
EPSS Score
0.059
Published
2022-02-04
CVE-2021-46454
D-Link device D-Link DIR-823-Pro v1.0.2 was discovered to contain a command injection vulnerability in the function SetWLanApcliSettings. This vulnerability allows attackers to execute arbitrary commands via the ApCliKeyStr parameter.
CVSS Score
9.8
EPSS Score
0.353
Published
2022-02-04
CVE-2021-46455
D-Link device D-Link DIR-823-Pro v1.0.2 was discovered to contain a command injection vulnerability in the function SetStationSettings. This vulnerability allows attackers to execute arbitrary commands via the station_access_enable parameter.
CVSS Score
9.8
EPSS Score
0.079
Published
2022-02-04
CVE-2021-46456
D-Link device D-Link DIR-823-Pro v1.0.2 was discovered to contain a command injection vulnerability in the function SetWLanACLSettings. This vulnerability allows attackers to execute arbitrary commands via the wl(0).(0)_maclist parameter.
CVSS Score
9.8
EPSS Score
0.079
Published
2022-02-04
CVE-2021-46457
D-Link device D-Link DIR-823-Pro v1.0.2 was discovered to contain a command injection vulnerability in the function ChgSambaUserSettings. This vulnerability allows attackers to execute arbitrary commands via the samba_name parameter.
CVSS Score
9.8
EPSS Score
0.079
Published
2022-02-04


Products
Pricing
Contact Us

Shodan ® - All rights reserved