D-Link Dap-2622 vulnerabilities

54 known vulnerabilities affecting d-link/dap-2622.

Total CVEs

54

CISA KEV

0

Public exploits

0

Exploited in wild

0

Severity breakdown

HIGH51MEDIUM3

Vulnerabilities

Page 3 of 3

CVE-2023-41215HIGHCVSS 8.8v1.00 dated 16-12-20202024-05-03

CVE-2023-41215 [HIGH] CWE-121 CVE-2023-41215: D-Link DAP-2622 DDP Set Date-Time Stack-based Buffer Overflow Remote Code Execution Vulnerability. T D-Link DAP-2622 DDP Set Date-Time Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DDP service. The issue

CVE-2023-35735HIGHCVSS 8.8v1.00 dated 16-12-20202024-05-03

CVE-2023-35735 [HIGH] CWE-121 CVE-2023-35735: D-Link DAP-2622 DDP Change ID Password New Username Stack-based Buffer Overflow Remote Code Executio D-Link DAP-2622 DDP Change ID Password New Username Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DDP

CVE-2023-35744HIGHCVSS 8.8v1.00 dated 16-12-20202024-05-03

CVE-2023-35744 [HIGH] CWE-121 CVE-2023-35744: D-Link DAP-2622 DDP Configuration Restore Server IPv6 Address Stack-based Buffer Overflow Remote Cod D-Link DAP-2622 DDP Configuration Restore Server IPv6 Address Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists withi

CVE-2023-37313HIGHCVSS 8.8v1.00 dated 16-12-20202024-05-03

CVE-2023-37313 [HIGH] CWE-121 CVE-2023-37313: D-Link DAP-2622 DDP Set IPv4 Address Auth Username Stack-based Buffer Overflow Remote Code Execution D-Link DAP-2622 DDP Set IPv4 Address Auth Username Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DDP s

CVE-2023-37326HIGHCVSS 8.8v1.00 dated 16-12-20202024-05-03

CVE-2023-37326 [HIGH] CWE-121 CVE-2023-37326: D-Link DAP-2622 DDP Set Wireless Info Auth Password Stack-based Buffer Overflow Remote Code Executio D-Link DAP-2622 DDP Set Wireless Info Auth Password Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DDP

CVE-2023-37312HIGHCVSS 8.8v1.00 dated 16-12-20202024-05-03

CVE-2023-37312 [HIGH] CWE-121 CVE-2023-37312: D-Link DAP-2622 DDP Set Device Info Device Name Stack-based Buffer Overflow Remote Code Execution Vu D-Link DAP-2622 DDP Set Device Info Device Name Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DDP serv

CVE-2023-35732HIGHCVSS 8.8v1.00 dated 16-12-20202024-05-03

CVE-2023-35732 [HIGH] CWE-121 CVE-2023-35732: D-Link DAP-2622 DDP Reset Factory Auth Password Stack-based Buffer Overflow Remote Code Execution Vu D-Link DAP-2622 DDP Reset Factory Auth Password Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DDP serv

CVE-2023-35741HIGHCVSS 8.8v1.00 dated 16-12-20202024-05-03

CVE-2023-35741 [HIGH] CWE-121 CVE-2023-35741: D-Link DAP-2622 DDP Configuration Backup Filename Stack-based Buffer Overflow Remote Code Execution D-Link DAP-2622 DDP Configuration Backup Filename Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DDP ser

CVE-2023-35724HIGHCVSS 8.8v1.00 dated 16-12-20202024-05-03

CVE-2023-35724 [HIGH] CWE-798 CVE-2023-35724: D-Link DAP-2622 Telnet CLI Use of Hardcoded Credentials Authentication Bypass Vulnerability. This vu D-Link DAP-2622 Telnet CLI Use of Hardcoded Credentials Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the CLI service, which listens on

CVE-2023-35756HIGHCVSS 8.8v1.00 dated 16-12-20202024-05-03

CVE-2023-35756 [HIGH] CWE-121 CVE-2023-35756: D-Link DAP-2622 DDP Set Date-Time Auth Password Stack-based Buffer Overflow Remote Code Execution Vu D-Link DAP-2622 DDP Set Date-Time Auth Password Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DDP serv

CVE-2023-35736HIGHCVSS 8.8v1.00 dated 16-12-20202024-05-03

CVE-2023-35736 [HIGH] CWE-121 CVE-2023-35736: D-Link DAP-2622 DDP Change ID Password New Password Stack-based Buffer Overflow Remote Code Executio D-Link DAP-2622 DDP Change ID Password New Password Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DDP

CVE-2023-35754HIGHCVSS 8.8v1.00 dated 16-12-20202024-05-03

CVE-2023-35754 [HIGH] CWE-121 CVE-2023-35754: D-Link DAP-2622 DDP Set AG Profile NMS URL Stack-based Buffer Overflow Remote Code Execution Vulnera D-Link DAP-2622 DDP Set AG Profile NMS URL Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DDP service.

CVE-2023-44416MEDIUMCVSS 6.8v1.00 dated 16-12-20202024-05-03

CVE-2023-44416 [MEDIUM] CWE-78 CVE-2023-44416: D-Link DAP-2622 Telnet CLI Command Injection Remote Code Execution Vulnerability. This vulnerability D-Link DAP-2622 Telnet CLI Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622. Authentication is required to exploit this vulnerability. The specific flaw exists within the CLI service, which listens on TCP port 23. The iss

CVE-2023-35750MEDIUMCVSS 6.5v1.00 dated 16-12-20202024-05-03

CVE-2023-35750 [MEDIUM] CWE-200 CVE-2023-35750: D-Link DAP-2622 DDP Get SSID List WPA PSK Information Disclosure Vulnerability. This vulnerability a D-Link DAP-2622 DDP Get SSID List WPA PSK Information Disclosure Vulnerability. This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DDP service. The issue results

← Previous3 / 3