Dir-865l firmware

This hub aggregates every CVE we track for Dir-865l firmware, a product in the networking infrastructure space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 15 most recently published vulnerabilities affecting Dir-865l firmware.

• CVE-2020-25786webinc/js/info.php on D-Link DIR-816L 2.06.B09_BETA and DIR-803 1.04.B02 devices allows XSS via the HTTP Referer header. NOTE: This vulnerability only affects products that are no longer supported ...6.1Sep 19, 2020
• CVE-2020-13782D-Link DIR-865L Ax 1.20B01 Beta devices allow Command Injection.8.8Jun 3, 2020
• CVE-2020-13783D-Link DIR-865L Ax 1.20B01 Beta devices have Cleartext Storage of Sensitive Information.7.5Jun 3, 2020
• CVE-2020-13784D-Link DIR-865L Ax 1.20B01 Beta devices have a predictable seed in a Pseudo-Random Number Generator.7.5Jun 3, 2020
• CVE-2020-13785D-Link DIR-865L Ax 1.20B01 Beta devices have Inadequate Encryption Strength.7.5Jun 3, 2020
• CVE-2020-13786D-Link DIR-865L Ax 1.20B01 Beta devices allow CSRF.8.8Jun 3, 2020
• CVE-2020-13787D-Link DIR-865L Ax 1.20B01 Beta devices have Cleartext Transmission of Sensitive Information.7.5Jun 3, 2020
• CVE-2019-20213D-Link DIR-859 routers before v1.07b03_beta allow Unauthenticated Information Disclosure via the AUTHORIZED_GROUP=1%0a value, as demonstrated by vpnconfig.php.7.5Jan 2, 2020
• CVE-2019-17621The UPnP endpoint URL /gena.cgi in the D-Link DIR-859 Wi-Fi router 1.05 and 1.06B01 Beta01 allows an Unauthenticated remote attacker to execute system commands as root, by sending a specially craft...KEV9.8Dec 30, 2019
• CVE-2013-4855D-Link DIR-865L has SMB Symlink Traversal due to misconfiguration in the SMB service allowing symbolic links to be created to locations outside of the Samba share.8.8Oct 25, 2019
• CVE-2013-4856D-Link DIR-865L has Information Disclosure.6.5Oct 25, 2019
• CVE-2013-4857D-Link DIR-865L has PHP File Inclusion in the router xml file.9.8Oct 25, 2019
• CVE-2018-6528XSS vulnerability in htdocs/webinc/body/bsc_sms_send.php in D-Link DIR-868L DIR868LA1_FW112b04 and previous versions, DIR-865L DIR-865L_REVA_FIRMWARE_PATCH_1.08.B01 and previous versions, and DIR-8...6.1Mar 6, 2018
• CVE-2018-6529XSS vulnerability in htdocs/webinc/js/bsc_sms_inbox.php in D-Link DIR-868L DIR868LA1_FW112b04 and previous versions, DIR-865L DIR-865L_REVA_FIRMWARE_PATCH_1.08.B01 and previous versions, and DIR-86...6.1Mar 6, 2018
• CVE-2018-6530OS command injection vulnerability in soap.cgi (soapcgi_main in cgibin) in D-Link DIR-880L DIR-880L_REVA_FIRMWARE_PATCH_1.08B04 and previous versions, DIR-868L DIR868LA1_FW112b04 and previous versi...KEV9.8Mar 6, 2018