Dlink Dsl-2750U Firmware vulnerabilities

6 known vulnerabilities affecting dlink/dsl-2750u_firmware.

Total CVEs
6
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH2MEDIUM3

Vulnerabilities

Page 1 of 1
CVE-2024-9792MEDIUMCVSS 5.1vr5b0172024-10-10
CVE-2024-9792 [MEDIUM] CWE-79 CVE-2024-9792: A vulnerability classified as problematic has been found in D-Link DSL-2750U R5B017. This affects an A vulnerability classified as problematic has been found in D-Link DSL-2750U R5B017. This affects an unknown part of the component Port Forwarding Page. The manipulation of the argument PortMappingDescription leads to cross site scripting. It is possible to initiate the attack remotely.
nvd
CVE-2024-0717MEDIUMCVSS 5.3≤ 2024-01-122024-01-19
CVE-2024-0717 [MEDIUM] CWE-200 CVE-2024-0717: A vulnerability classified as critical was found in D-Link DAP-1360, DIR-300, DIR-615, DIR-615GF, DI A vulnerability classified as critical was found in D-Link DAP-1360, DIR-300, DIR-615, DIR-615GF, DIR-615S, DIR-615T, DIR-620, DIR-620S, DIR-806A, DIR-815, DIR-815AC, DIR-815S, DIR-816, DIR-820, DIR-822, DIR-825, DIR-825AC, DIR-825ACF, DIR-825ACG1, DIR-841, DIR-842, DIR-842S, DIR-843, DIR-853, DIR-878, DIR-882, DIR-1210, DIR-1260, DIR-2150, DIR-X1530,
nvd
CVE-2021-3708HIGHCVSS 7.8≤ 1.162021-08-16
CVE-2021-3708 [HIGH] CVE-2021-3708: D-Link router DSL-2750U with firmware vME1.16 or prior versions is vulnerable to OS command injectio D-Link router DSL-2750U with firmware vME1.16 or prior versions is vulnerable to OS command injection. An unauthenticated attacker on the local network may exploit this, with CVE-2021-3707, to execute any OS commands on the vulnerable device.
nvd
CVE-2021-3707MEDIUMCVSS 5.5≤ 1.162021-08-16
CVE-2021-3707 [MEDIUM] CWE-15 CVE-2021-3707: D-Link router DSL-2750U with firmware vME1.16 or prior versions is vulnerable to unauthorized config D-Link router DSL-2750U with firmware vME1.16 or prior versions is vulnerable to unauthorized configuration modification. An unauthenticated attacker on the local network may exploit this, with CVE-2021-3708, to execute any OS commands on the vulnerable device.
nvd
CVE-2020-13150HIGHCVSS 7.8vme_1.032020-06-15
CVE-2020-13150 [HIGH] CWE-306 CVE-2020-13150: D-link DSL-2750U ISL2750UEME3.V1E devices allow approximately 90 seconds of access to the control pa D-link DSL-2750U ISL2750UEME3.V1E devices allow approximately 90 seconds of access to the control panel, after a restart, before MAC address filtering rules become active.
nvd
CVE-2019-1010155CRITICALCVSS 9.1v1.112019-07-23
CVE-2019-1010155 [CRITICAL] CVE-2019-1010155: D-Link DSL-2750U 1.11 is affected by: Authentication Bypass. The impact is: denial of service and in D-Link DSL-2750U 1.11 is affected by: Authentication Bypass. The impact is: denial of service and information leakage. The component is: login. NOTE: Third parties dispute this issues as not being a vulnerability because although the wizard is accessible without authentication, it can't actually configure anything. Thus, there is no denial of service
nvd