Dlink Dap-2622 Firmware vulnerabilities
54 known vulnerabilities affecting dlink/dap-2622_firmware.
Total CVEs
54
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH51MEDIUM3
Vulnerabilities
Page 1 of 3
CVE-2023-35748HIGHCVSS 8.8v1.002024-05-07
CVE-2023-35748 [HIGH] CWE-121 CVE-2023-35748: D-Link DAP-2622 DDP Firmware Upgrade Server IPv6 Address Stack-based Buffer Overflow Remote Code Exe
D-Link DAP-2622 DDP Firmware Upgrade Server IPv6 Address Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the
nvd
CVE-2023-35757HIGHCVSS 8.8fixed in 1.10b03r0222024-05-07
CVE-2023-35757 [HIGH] CWE-121 CVE-2023-35757: D-Link DAP-2622 DDP Set Date-Time NTP Server Stack-based Buffer Overflow Remote Code Execution Vulne
D-Link DAP-2622 DDP Set Date-Time NTP Server Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the DDP service
nvd
CVE-2023-35749HIGHCVSS 8.8v1.002024-05-07
CVE-2023-35749 [HIGH] CWE-121 CVE-2023-35749: D-Link DAP-2622 DDP Firmware Upgrade Filename Stack-based Buffer Overflow Remote Code Execution Vuln
D-Link DAP-2622 DDP Firmware Upgrade Filename Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the DDP servic
nvd
CVE-2023-37325MEDIUMCVSS 5.4v1.002024-05-07
CVE-2023-37325 [MEDIUM] CWE-306 CVE-2023-37325: D-Link DAP-2622 DDP Set SSID List Missing Authentication Vulnerability. This vulnerability allows ne
D-Link DAP-2622 DDP Set SSID List Missing Authentication Vulnerability. This vulnerability allows network-adjacent attackers to make unauthorized changes to device configuration on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the DDP service. The iss
nvd
CVE-2023-35731HIGHCVSS 8.8fixed in 1.10b03r0222024-05-03
CVE-2023-35731 [HIGH] CWE-121 CVE-2023-35731: D-Link DAP-2622 DDP Reset Factory Auth Username Stack-based Buffer Overflow Remote Code Execution Vu
D-Link DAP-2622 DDP Reset Factory Auth Username Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the DDP serv
nvd
CVE-2023-35740HIGHCVSS 8.8fixed in 1.10b03r0222024-05-03
CVE-2023-35740 [HIGH] CWE-121 CVE-2023-35740: D-Link DAP-2622 DDP Configuration Backup Server Address Stack-based Buffer Overflow Remote Code Exec
D-Link DAP-2622 DDP Configuration Backup Server Address Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the
nvd
CVE-2023-35727HIGHCVSS 8.8fixed in 1.10b03r0222024-05-03
CVE-2023-35727 [HIGH] CWE-121 CVE-2023-35727: D-Link DAP-2622 DDP Reboot Auth Username Stack-based Buffer Overflow Remote Code Execution Vulnerabi
D-Link DAP-2622 DDP Reboot Auth Username Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the DDP service. Th
nvd
CVE-2023-35742HIGHCVSS 8.8fixed in 1.10b03r0222024-05-03
CVE-2023-35742 [HIGH] CWE-121 CVE-2023-35742: D-Link DAP-2622 DDP Configuration Restore Auth Username Stack-based Buffer Overflow Remote Code Exec
D-Link DAP-2622 DDP Configuration Restore Auth Username Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the
nvd
CVE-2023-35747HIGHCVSS 8.8fixed in 1.10b03r0222024-05-03
CVE-2023-35747 [HIGH] CWE-121 CVE-2023-35747: D-Link DAP-2622 DDP Firmware Upgrade Auth Password Stack-based Buffer Overflow Remote Code Execution
D-Link DAP-2622 DDP Firmware Upgrade Auth Password Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the DDP s
nvd
CVE-2023-35752HIGHCVSS 8.8fixed in 1.10b03r0222024-05-03
CVE-2023-35752 [HIGH] CWE-121 CVE-2023-35752: D-Link DAP-2622 DDP Set AG Profile Auth Password Stack-based Buffer Overflow Remote Code Execution V
D-Link DAP-2622 DDP Set AG Profile Auth Password Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the DDP ser
nvd
CVE-2023-37317HIGHCVSS 8.8fixed in 1.10b03r0222024-05-03
CVE-2023-37317 [HIGH] CWE-121 CVE-2023-37317: D-Link DAP-2622 DDP Set IPv6 Address Primary DNS Stack-based Buffer Overflow Remote Code Execution V
D-Link DAP-2622 DDP Set IPv6 Address Primary DNS Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the DDP ser
nvd
CVE-2023-35718HIGHCVSS 8.8v1.002024-05-03
CVE-2023-35718 [HIGH] CWE-121 CVE-2023-35718: D-Link DAP-2622 DDP Change ID Password Auth Password Stack-based Buffer Overflow Remote Code Executi
D-Link DAP-2622 DDP Change ID Password Auth Password Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the DDP
nvd
CVE-2023-37320HIGHCVSS 8.8fixed in 1.10b03r0222024-05-03
CVE-2023-37320 [HIGH] CWE-121 CVE-2023-37320: D-Link DAP-2622 DDP Set SSID List SSID Name Stack-based Buffer Overflow Remote Code Execution Vulner
D-Link DAP-2622 DDP Set SSID List SSID Name Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the DDP service.
nvd
CVE-2023-37310HIGHCVSS 8.8fixed in 1.10b03r0222024-05-03
CVE-2023-37310 [HIGH] CWE-121 CVE-2023-37310: D-Link DAP-2622 DDP Set Device Info Auth Username Stack-based Buffer Overflow Remote Code Execution
D-Link DAP-2622 DDP Set Device Info Auth Username Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the DDP ser
nvd
CVE-2023-37321HIGHCVSS 8.8fixed in 1.10b03r0222024-05-03
CVE-2023-37321 [HIGH] CWE-121 CVE-2023-37321: D-Link DAP-2622 DDP Set SSID List RADIUS Secret Stack-based Buffer Overflow Remote Code Execution Vu
D-Link DAP-2622 DDP Set SSID List RADIUS Secret Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the DDP serv
nvd
CVE-2023-35726HIGHCVSS 8.8fixed in 1.10b03r0222024-05-03
CVE-2023-35726 [HIGH] CWE-121 CVE-2023-35726: D-Link DAP-2622 DDP User Verification Auth Password Stack-based Buffer Overflow Remote Code Executio
D-Link DAP-2622 DDP User Verification Auth Password Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the DDP
nvd
CVE-2023-37322HIGHCVSS 8.8fixed in 1.10b03r0222024-05-03
CVE-2023-37322 [HIGH] CWE-121 CVE-2023-37322: D-Link DAP-2622 DDP Set SSID List RADIUS Server Stack-based Buffer Overflow Remote Code Execution Vu
D-Link DAP-2622 DDP Set SSID List RADIUS Server Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the DDP serv
nvd
CVE-2023-35743HIGHCVSS 8.8fixed in 1.10b03r0222024-05-03
CVE-2023-35743 [HIGH] CWE-121 CVE-2023-35743: D-Link DAP-2622 DDP Configuration Restore Auth Password Stack-based Buffer Overflow Remote Code Exec
D-Link DAP-2622 DDP Configuration Restore Auth Password Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the
nvd
CVE-2023-35755HIGHCVSS 8.8fixed in 1.10b03r0222024-05-03
CVE-2023-35755 [HIGH] CWE-121 CVE-2023-35755: D-Link DAP-2622 DDP Set Date-Time Auth Username Stack-based Buffer Overflow Remote Code Execution Vu
D-Link DAP-2622 DDP Set Date-Time Auth Username Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the DDP serv
nvd
CVE-2023-35745HIGHCVSS 8.8fixed in 1.10b03r0222024-05-03
CVE-2023-35745 [HIGH] CWE-121 CVE-2023-35745: D-Link DAP-2622 DDP Configuration Restore Filename Stack-based Buffer Overflow Remote Code Execution
D-Link DAP-2622 DDP Configuration Restore Filename Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the DDP s
nvd
1 / 3Next →