Dlink Dir-823x_firmware
39 CVEs affecting Dlink Dir-823x_firmware. Latest disclosed: 2026-02-09. Critical: 5, High: 15.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-29043 | Critical | 9.8 | 2025-04-17 | An issue in dlink DIR 832x 240802 allows a remote attacker to execute arbitrary code via the function 0x417234 |
CVE-2025-29042 | Critical | 9.8 | 2025-04-17 | An issue in dlink DIR 832x 240802 allows a remote attacker to execute arbitrary code via the macaddr key value to the function 0x42232c |
CVE-2025-29041 | Critical | 9.8 | 2025-04-17 | An issue in dlink DIR 823x 240802 allows a remote attacker to execute arbitrary code via the target_addr key value and the function 0x41710c |
CVE-2025-29040 | Critical | 9.8 | 2025-04-17 | An issue in dlink DIR 823x 240802 allows a remote attacker to execute arbitrary code via the target_addr key value and the function 0x41737c |
CVE-2024-39962 | Critical | 9.8 | 2024-07-19 | D-Link DIR-823X AX3000 Dual-Band Gigabit Wireless Router v21_D240126 was discovered to contain a remote code execution (RCE) vulnerability in the ntp_zone_val… |
CVE-2025-55848 | High | 8.8 | 2025-09-26 | An issue was discovered in DIR-823 firmware 20250416. There is an RCE vulnerability in the set_cassword settings interface, as the http_casswd parameter is not… |
CVE-2025-0492 | High | 7.5 | 2025-01-15 | A vulnerability has been found in D-Link DIR-823X 240126/240802 and classified as critical. Affected by this vulnerability is the function FUN_00412244. The ma… |
CVE-2026-1125 | High | 7.3 | 2026-01-18 | A weakness has been identified in D-Link DIR-823X 250416. Affected by this issue is the function sub_412E7C of the file /goform/set_wifidog_settings. Executing… |
CVE-2025-10123 | High | 7.3 | 2025-09-09 | A vulnerability was determined in D-Link DIR-823X up to 250416. Affected by this vulnerability is the function sub_415028 of the file /goform/set_static_leases… |
CVE-2026-2210 | High | 7.2 | 2026-02-09 | A vulnerability has been found in D-Link DIR-823X 250416. This affects the function sub_4211C8 of the file /goform/set_filtering. Such manipulation leads to os… |
CVE-2026-2175 | High | 7.2 | 2026-02-08 | A weakness has been identified in D-Link DIR-823X 250416. This vulnerability affects the function sub_420618 of the file /goform/set_upnp. This manipulation of… |
CVE-2026-2157 | High | 7.2 | 2026-02-08 | A security vulnerability has been detected in D-Link DIR-823X 250416. This affects the function sub_4175CC of the file /goform/set_static_route_table. Such man… |
CVE-2026-2155 | High | 7.2 | 2026-02-08 | A security flaw has been discovered in D-Link DIR-823X 250416. The affected element is the function sub_4208A0 of the file /goform/set_dmz of the component Con… |
CVE-2026-2143 | High | 7.2 | 2026-02-08 | A security vulnerability has been detected in D-Link DIR-823X 250416. This issue affects some unknown processing of the file /goform/set_ddns of the component… |
CVE-2026-2142 | High | 7.2 | 2026-02-08 | A weakness has been identified in D-Link DIR-823X 250416. This vulnerability affects the function sub_420688 of the file /goform/set_qos. Executing a manipulat… |
CVE-2026-2129 | High | 7.2 | 2026-02-08 | A vulnerability was found in D-Link DIR-823X 250416. Affected by this issue is some unknown functionality of the file /goform/set_ac_status. Performing a manip… |
CVE-2026-2120 | High | 7.2 | 2026-02-08 | A vulnerability was identified in D-Link DIR-823X 250416. This affects an unknown function of the file /goform/set_server_settings of the component Configurati… |
CVE-2026-2084 | High | 7.2 | 2026-02-07 | A weakness has been identified in D-Link DIR-823X 250416. This impacts an unknown function of the file /goform/set_language. Executing a manipulation of the ar… |
CVE-2025-29039 | High | 7.2 | 2025-04-17 | An issue in dlink DIR 832x 240802 allows a remote attacker to execute arbitrary code via the function 0x41dda8 |
CVE-2025-29635 | High | 7.2 | 2025-03-25 | A command injection vulnerability in D-Link DIR-823X 240126 and 240802 allows an authorized attacker to execute arbitrary commands on remote devices by sending… |