Dlink: >> Dir-823g Firmware >> 1.02b05 Security Vulnerabilities
D-Link DIR-823G firmware version 1.02B05 has a buffer overflow vulnerability, which originates from the HostName field in SetParentsControlInfo.
CVSS Score
9.8
EPSS Score
0.021
Published
2023-06-29
An OS command injection vulnerability in D-Link DIR-823G firmware version 1.02B05 allows unauthorized attackers to execute arbitrary operating system commands via a crafted GET request to EXCU_SHELL.
CVSS Score
9.8
EPSS Score
0.713
Published
2023-06-29
D-Link DIR-823G firmware version 1.02B05 has a buffer overflow vulnerability, which originates from the URL field in SetParentsControlInfo.
CVSS Score
9.8
EPSS Score
0.021
Published
2023-06-29
D-Link DIR-823G firmware version 1.02B05 has a password reset vulnerability, which originates from the SetMultipleActions API, allowing unauthorized attackers to reset the WEB page management password.
CVSS Score
7.5
EPSS Score
0.001
Published
2023-06-28
D-Link DIR823G 1.02B05 is vulnerable to Commad Injection.
CVSS Score
9.8
EPSS Score
0.01
Published
2022-11-22
An Access Control vulnerability exists in D-Link DIR-823G REVA1 1.02B05 (Lastest) via any parameter in the HNAP1 function
CVSS Score
9.8
EPSS Score
0.034
Published
2022-04-07
An issue in the component /cgi-bin/upload_firmware.cgi of D-Link DIR-823G REVA1 1.02B05 allows attackers to cause a denial of service (DoS) via unspecified vectors.
CVSS Score
9.1
EPSS Score
0.005
Published
2021-11-04
A command injection vulnerability was discovered in the HNAP1 protocol in D-Link DIR-823G devices with firmware V1.0.2B05. An attacker is able to execute arbitrary web scripts via shell metacharacters in the PrivateLogin field to Login.
CVSS Score
9.8
EPSS Score
0.415
Published
2021-11-04