Dlink: >> Dir820la1 Security Vulnerabilities
CVE-2023-25280
OS Command injection vulnerability in D-Link DIR820LA1_FW105B03 allows attackers to escalate privileges to root via a crafted payload with the ping_addr parameter to ping.ccp.
Known exploited
CVSS Score
9.8
EPSS Score
0.931
Published
2023-03-16
A stack overflow vulnerability exists in pingV4Msg component in D-Link DIR820LA1_FW105B03, allows attackers to cause a denial of service via the nextPage parameter to ping.ccp.
CVSS Score
7.5
EPSS Score
0.003
Published
2023-03-16
D-Link DIR820LA1_FW106B02 was discovered to contain a buffer overflow via the nextPage parameter at ping.ccp.
CVSS Score
7.5
EPSS Score
0.151
Published
2022-08-03
D-Link DIR810LA1_FW102B22 was discovered to contain a command injection vulnerability via the Ping_addr function.
CVSS Score
9.8
EPSS Score
0.577
Published
2022-08-03