Dlink Dap-1650

6 CVEs affecting Dlink Dap-1650. Latest disclosed: 2024-07-16. Critical: 6, High: 0.

Top CVEs affecting Dlink Dap-1650
CVESeverityScorePublishedSummary
CVE-2022-36588Critical9.82022-09-08In D-Link DAP1650 v1.04 firmware, the fileaccess.cgi program in the firmware has a buffer overflow vulnerability caused by strncpy.
CVE-2019-12768Critical9.82020-12-30An issue was discovered on D-Link DAP-1650 devices through v1.03b07 before 1.04B02_J65H Hot Fix. Attackers can bypass authentication via forceful browsing.
CVE-2019-12767Critical9.82020-03-21An issue was discovered on D-Link DAP-1650 devices before 1.04B02_J65H Hot Fix. Attackers can execute arbitrary commands.
CVE-2024-23625Critical9.62024-01-26A command injection vulnerability exists in D-Link DAP-1650 devices when handling UPnP SUBSCRIBE messages. An unauthenticated attacker can exploit this vulnera…
CVE-2024-23624Critical9.62024-01-26A command injection vulnerability exists in the gena.cgi module of D-Link DAP-1650 devices. An unauthenticated attacker can exploit this vulnerability to gain…
CVE-2024-40505Critical9.32024-07-16Directory Traversal vulnerability in D-Link DAP-1650 Firmware v.1.03 allows a local attacker to escalate privileges via the hedwig.cgi component.