Vulnerabilities (CVE)

Filtered by vendor Dlink Subscribe

Filtered by product Dir-850l Firmware

Total 27 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2017-14425	1 Dlink	2 Dir-850l, Dir-850l Firmware	2023-12-10	2.1 LOW	7.8 HIGH
D-Link DIR-850L REV. A (with firmware through FW114WWb07_h2ab_beta1) and REV. B (with firmware through FW208WWb02) devices have 0666 /var/etc/hnapasswd permissions.
CVE-2017-14422	1 Dlink	2 Dir-850l, Dir-850l Firmware	2023-12-10	5.0 MEDIUM	7.5 HIGH
D-Link DIR-850L REV. A (with firmware through FW114WWb07_h2ab_beta1) and REV. B (with firmware through FW208WWb02) devices use the same hardcoded /etc/stunnel.key private key across different customers' installations, which allows remote attackers to defeat the HTTPS cryptographic protection mechanisms by leveraging knowledge of this key from another installation.
CVE-2017-14416	1 Dlink	2 Dir-850l, Dir-850l Firmware	2023-12-10	4.3 MEDIUM	6.1 MEDIUM
D-Link DIR-850L REV. A (with firmware through FW114WWb07_h2ab_beta1) devices have XSS in the action parameter to htdocs/web/wandetect.php.
CVE-2017-14413	1 Dlink	2 Dir-850l, Dir-850l Firmware	2023-12-10	4.3 MEDIUM	6.1 MEDIUM
D-Link DIR-850L REV. A (with firmware through FW114WWb07_h2ab_beta1) devices have XSS in the action parameter to htdocs/web/wpsacts.php.
CVE-2017-3193	1 Dlink	2 Dir-850l, Dir-850l Firmware	2023-12-10	8.3 HIGH	8.8 HIGH
Multiple D-Link devices including the DIR-850L firmware versions 1.14B07 and 2.07.B05 contain a stack-based buffer overflow vulnerability in the web administration interface HNAP service.
CVE-2017-14415	1 Dlink	2 Dir-850l, Dir-850l Firmware	2023-12-10	4.3 MEDIUM	6.1 MEDIUM
D-Link DIR-850L REV. A (with firmware through FW114WWb07_h2ab_beta1) devices have XSS in the action parameter to htdocs/web/sitesurvey.php.
CVE-2017-14414	1 Dlink	2 Dir-850l, Dir-850l Firmware	2023-12-10	4.3 MEDIUM	6.1 MEDIUM
D-Link DIR-850L REV. A (with firmware through FW114WWb07_h2ab_beta1) devices have XSS in the action parameter to htdocs/web/shareport.php.