Dlink Dir-3040 Firmware vulnerabilities
25 known vulnerabilities affecting dlink/dir-3040_firmware.
Total CVEs
25
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL3HIGH8MEDIUM14
Vulnerabilities
Page 2 of 2
CVE-2021-21820CRITICALCVSS 9.8v1.13b032021-07-16
CVE-2021-21820 [CRITICAL] CWE-798 CVE-2021-21820: A hard-coded password vulnerability exists in the Libcli Test Environment functionality of D-LINK DI
A hard-coded password vulnerability exists in the Libcli Test Environment functionality of D-LINK DIR-3040 1.13B03. A specially crafted network request can lead to code execution. An attacker can send a sequence of requests to trigger this vulnerability.
nvd
CVE-2021-21819HIGHCVSS 7.2v1.13b032021-07-16
CVE-2021-21819 [HIGH] CWE-78 CVE-2021-21819: A code execution vulnerability exists in the Libcli Test Environment functionality of D-LINK DIR-304
A code execution vulnerability exists in the Libcli Test Environment functionality of D-LINK DIR-3040 1.13B03. A specially crafted network request can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger this vulnerability.
nvd
CVE-2021-21818HIGHCVSS 7.5v1.13b032021-07-16
CVE-2021-21818 [HIGH] CWE-259 CVE-2021-21818: A hard-coded password vulnerability exists in the Zebra IP Routing Manager functionality of D-LINK D
A hard-coded password vulnerability exists in the Zebra IP Routing Manager functionality of D-LINK DIR-3040 1.13B03. A specially crafted network request can lead to a denial of service. An attacker can send a sequence of requests to trigger this vulnerability.
nvd
CVE-2021-21817HIGHCVSS 7.5v1.13b032021-07-16
CVE-2021-21817 [HIGH] CWE-200 CVE-2021-21817: An information disclosure vulnerability exists in the Zebra IP Routing Manager functionality of D-LI
An information disclosure vulnerability exists in the Zebra IP Routing Manager functionality of D-LINK DIR-3040 1.13B03. A specially crafted network request can lead to the disclosure of sensitive information. An attacker can send a sequence of requests to trigger this vulnerability.
nvd
CVE-2021-21816MEDIUMCVSS 4.3PoCv1.13b032021-07-16
CVE-2021-21816 [MEDIUM] CWE-200 CVE-2021-21816: An information disclosure vulnerability exists in the Syslog functionality of D-LINK DIR-3040 1.13B0
An information disclosure vulnerability exists in the Syslog functionality of D-LINK DIR-3040 1.13B03. A specially crafted network request can lead to the disclosure of sensitive information. An attacker can send an HTTP request to trigger this vulnerability.
nvd
← Previous2 / 2