Dlink Dir-865l_firmware

16 CVEs affecting Dlink Dir-865l_firmware. Latest disclosed: 2020-09-19. Critical: 3, High: 8.

Top CVEs affecting Dlink Dir-865l_firmware
CVESeverityScorePublishedSummary
CVE-2019-17621Critical9.82019-12-30The UPnP endpoint URL /gena.cgi in the D-Link DIR-859 Wi-Fi router 1.05 and 1.06B01 Beta01 allows an Unauthenticated remote attacker to execute system commands…
CVE-2013-4857Critical9.82019-10-25D-Link DIR-865L has PHP File Inclusion in the router xml file.
CVE-2018-6530Critical9.82018-03-06OS command injection vulnerability in soap.cgi (soapcgi_main in cgibin) in D-Link DIR-880L DIR-880L_REVA_FIRMWARE_PATCH_1.08B04 and previous versions, DIR-868L…
CVE-2020-13786High8.82020-06-03D-Link DIR-865L Ax 1.20B01 Beta devices allow CSRF.
CVE-2020-13782High8.82020-06-03D-Link DIR-865L Ax 1.20B01 Beta devices allow Command Injection.
CVE-2013-4855High8.82019-10-25D-Link DIR-865L has SMB Symlink Traversal due to misconfiguration in the SMB service allowing symbolic links to be created to locations outside of the Samba sh…
CVE-2020-13787High7.52020-06-03D-Link DIR-865L Ax 1.20B01 Beta devices have Cleartext Transmission of Sensitive Information.
CVE-2020-13785High7.52020-06-03D-Link DIR-865L Ax 1.20B01 Beta devices have Inadequate Encryption Strength.
CVE-2020-13784High7.52020-06-03D-Link DIR-865L Ax 1.20B01 Beta devices have a predictable seed in a Pseudo-Random Number Generator.
CVE-2020-13783High7.52020-06-03D-Link DIR-865L Ax 1.20B01 Beta devices have Cleartext Storage of Sensitive Information.
CVE-2019-20213High7.52020-01-02D-Link DIR-859 routers before v1.07b03_beta allow Unauthenticated Information Disclosure via the AUTHORIZED_GROUP=1%0a value, as demonstrated by vpnconfig.php.
CVE-2013-4856Medium6.52019-10-25D-Link DIR-865L has Information Disclosure.
CVE-2020-25786Medium6.12020-09-19webinc/js/info.php on D-Link DIR-816L 2.06.B09_BETA and DIR-803 1.04.B02 devices allows XSS via the HTTP Referer header. NOTE: This vulnerability only affects…
CVE-2018-6529Medium6.12018-03-06XSS vulnerability in htdocs/webinc/js/bsc_sms_inbox.php in D-Link DIR-868L DIR868LA1_FW112b04 and previous versions, DIR-865L DIR-865L_REVA_FIRMWARE_PATCH_1.08…
CVE-2018-6528Medium6.12018-03-06XSS vulnerability in htdocs/webinc/body/bsc_sms_send.php in D-Link DIR-868L DIR868LA1_FW112b04 and previous versions, DIR-865L DIR-865L_REVA_FIRMWARE_PATCH_1.0…
CVE-2018-6527Medium6.12018-03-06XSS vulnerability in htdocs/webinc/js/adv_parent_ctrl_map.php in D-Link DIR-868L DIR868LA1_FW112b04 and previous versions, DIR-865L DIR-865L_REVA_FIRMWARE_PATC…