Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Dir\-845l_firmware
(Dlink)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 9 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2024-03-22 | CVE-2024-29366 | A command injection vulnerability exists in the cgibin binary in DIR-845L router firmware <= v1.01KRb03. | Dir\-845l_firmware | N/A | ||
| 2024-03-22 | CVE-2024-29385 | DIR-845L router <= v1.01KRb03 has an Unauthenticated remote code execution vulnerability in the cgibin binary via soapcgi_main function. | Dir\-845l_firmware | N/A | ||
| 2024-05-06 | CVE-2024-33110 | D-Link DIR-845L router v1.01KRb03 and before is vulnerable to Permission Bypass via the getcfg.php component. | Dir\-845l_firmware | N/A | ||
| 2024-05-06 | CVE-2024-33111 | D-Link DIR-845L router <=v1.01KRb03 is vulnerable to Cross Site Scripting (XSS) via /htdocs/webinc/js/bsc_sms_inbox.php. | Dir\-845l_firmware | N/A | ||
| 2024-05-06 | CVE-2024-33112 | D-Link DIR-845L router v1.01KRb03 and before is vulnerable to Command injection via the hnap_main()func. | Dir\-845l_firmware | N/A | ||
| 2024-05-06 | CVE-2024-33113 | D-LINK DIR-845L <=v1.01KRb03 is vulnerable to Information disclosurey via bsc_sms_inbox.php. | Dir\-845l_firmware | N/A | ||
| 2022-08-28 | CVE-2022-36755 | D-Link DIR845L A1 contains a authentication vulnerability via an AUTHORIZED_GROUP=1 value, as demonstrated by a request for getcfg.php. | Dir\-845l_firmware | 9.8 | ||
| 2022-08-28 | CVE-2022-36756 | DIR845L A1 v1.00-v1.03 is vulnerable to command injection via /htdocs/upnpinc/gena.php. | Dir\-845l_firmware | 9.8 | ||
| 2022-08-28 | CVE-2022-38557 | D-Link DIR845L v1.00-v1.03 contains a Static Default Credential vulnerability in /etc/init0.d/S80telnetd.sh. | Dir\-845l_firmware | 9.8 |