Dlink Dir-865l
16 CVEs affecting Dlink Dir-865l. Latest disclosed: 2020-09-19. Critical: 3, High: 8.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2019-17621 | Critical | 9.8 | 2019-12-30 | The UPnP endpoint URL /gena.cgi in the D-Link DIR-859 Wi-Fi router 1.05 and 1.06B01 Beta01 allows an Unauthenticated remote attacker to execute system commands… |
CVE-2013-4857 | Critical | 9.8 | 2019-10-25 | D-Link DIR-865L has PHP File Inclusion in the router xml file. |
CVE-2018-6530 | Critical | 9.8 | 2018-03-06 | OS command injection vulnerability in soap.cgi (soapcgi_main in cgibin) in D-Link DIR-880L DIR-880L_REVA_FIRMWARE_PATCH_1.08B04 and previous versions, DIR-868L… |
CVE-2020-13786 | High | 8.8 | 2020-06-03 | D-Link DIR-865L Ax 1.20B01 Beta devices allow CSRF. |
CVE-2020-13782 | High | 8.8 | 2020-06-03 | D-Link DIR-865L Ax 1.20B01 Beta devices allow Command Injection. |
CVE-2013-4855 | High | 8.8 | 2019-10-25 | D-Link DIR-865L has SMB Symlink Traversal due to misconfiguration in the SMB service allowing symbolic links to be created to locations outside of the Samba sh… |
CVE-2020-13787 | High | 7.5 | 2020-06-03 | D-Link DIR-865L Ax 1.20B01 Beta devices have Cleartext Transmission of Sensitive Information. |
CVE-2020-13785 | High | 7.5 | 2020-06-03 | D-Link DIR-865L Ax 1.20B01 Beta devices have Inadequate Encryption Strength. |
CVE-2020-13784 | High | 7.5 | 2020-06-03 | D-Link DIR-865L Ax 1.20B01 Beta devices have a predictable seed in a Pseudo-Random Number Generator. |
CVE-2020-13783 | High | 7.5 | 2020-06-03 | D-Link DIR-865L Ax 1.20B01 Beta devices have Cleartext Storage of Sensitive Information. |
CVE-2019-20213 | High | 7.5 | 2020-01-02 | D-Link DIR-859 routers before v1.07b03_beta allow Unauthenticated Information Disclosure via the AUTHORIZED_GROUP=1%0a value, as demonstrated by vpnconfig.php. |
CVE-2013-4856 | Medium | 6.5 | 2019-10-25 | D-Link DIR-865L has Information Disclosure. |
CVE-2020-25786 | Medium | 6.1 | 2020-09-19 | webinc/js/info.php on D-Link DIR-816L 2.06.B09_BETA and DIR-803 1.04.B02 devices allows XSS via the HTTP Referer header. NOTE: This vulnerability only affects… |
CVE-2018-6529 | Medium | 6.1 | 2018-03-06 | XSS vulnerability in htdocs/webinc/js/bsc_sms_inbox.php in D-Link DIR-868L DIR868LA1_FW112b04 and previous versions, DIR-865L DIR-865L_REVA_FIRMWARE_PATCH_1.08… |
CVE-2018-6528 | Medium | 6.1 | 2018-03-06 | XSS vulnerability in htdocs/webinc/body/bsc_sms_send.php in D-Link DIR-868L DIR868LA1_FW112b04 and previous versions, DIR-865L DIR-865L_REVA_FIRMWARE_PATCH_1.0… |
CVE-2018-6527 | Medium | 6.1 | 2018-03-06 | XSS vulnerability in htdocs/webinc/js/adv_parent_ctrl_map.php in D-Link DIR-868L DIR868LA1_FW112b04 and previous versions, DIR-865L DIR-865L_REVA_FIRMWARE_PATC… |