Dlink Dir-823g Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Dlink Dir-823g Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (58)
CVE-2020-25367 — CVSS 9.8 (critical): A command injection vulnerability was discovered in the HNAP1 protocol in D-Link DIR-823G devices with firmware V1.0.2B05. An attacker is…
CVE-2020-25368 — CVSS 9.8 (critical): A command injection vulnerability was discovered in the HNAP1 protocol in D-Link DIR-823G devices with firmware V1.0.2B05. An attacker is…
CVE-2021-43474 — CVSS 9.8 (critical): An Access Control vulnerability exists in D-Link DIR-823G REVA1 1.02B05 (Lastest) via any parameter in the HNAP1 function
CVE-2022-44808 — CVSS 9.8 (critical): A command injection vulnerability has been found on D-Link DIR-823G devices with firmware version 1.02B03 that allows an attacker to…
CVE-2023-26612 — CVSS 9.8 (critical): D-Link DIR-823G firmware version 1.02B05 has a buffer overflow vulnerability, which originates from the HostName field in…
CVE-2023-26613 — CVSS 9.8 (critical): An OS command injection vulnerability in D-Link DIR-823G firmware version 1.02B05 allows unauthorized attackers to execute arbitrary…
CVE-2022-43109 — CVSS 9.8 (critical): D-Link DIR-823G v1.0.2 was found to contain a command injection vulnerability in the function SetNetworkTomographySettings. This…
CVE-2023-26616 — CVSS 9.8 (critical): D-Link DIR-823G firmware version 1.02B05 has a buffer overflow vulnerability, which originates from the URL field in SetParentsControlInfo.
CVE-2023-29665 — CVSS 9.8 (critical): D-Link DIR823G_V1.0.2B05 was discovered to contain a stack overflow via the NewPassword parameters in SetPasswdSettings.
CVE-2023-43241 — CVSS 9.8 (critical): D-Link DIR-823G v1.0.2B05 was discovered to contain a stack overflow via parameter TXPower and GuardInt in SetWLanRadioSecurity.
CVE-2023-43235 — CVSS 9.8 (critical): D-Link DIR-823G v1.0.2B05 was discovered to contain a stack overflow via parameter StartTime and EndTime in SetWifiDownSettings.
CVE-2020-25366 — CVSS 9.1 (critical): An issue in the component /cgi-bin/upload_firmware.cgi of D-Link DIR-823G REVA1 1.02B05 allows attackers to cause a denial of service (DoS)…
CVE-2019-15530 — CVSS 8.8 (high): An issue was discovered on D-Link DIR-823G devices with firmware V1.0.2B05. There is a command injection in HNAP1 (exploitable with…
CVE-2019-15526 — CVSS 8.8 (high): An issue was discovered on D-Link DIR-823G devices with firmware V1.0.2B05. There is a command injection in HNAP1 (exploitable with…
CVE-2019-15527 — CVSS 8.8 (high): An issue was discovered on D-Link DIR-823G devices with firmware V1.0.2B05. There is a command injection in HNAP1 (exploitable with…
CVE-2019-15528 — CVSS 8.8 (high): An issue was discovered on D-Link DIR-823G devices with firmware V1.0.2B05. There is a command injection in HNAP1 (exploitable with…
CVE-2019-13128 — CVSS 8.8 (high): An issue was discovered on D-Link DIR-823G devices with firmware 1.02B03. There is a command injection in HNAP1 (exploitable with…
CVE-2024-27655 — CVSS 8.8 (high): D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow via the SOAPACTION parameter. This vulnerability allows attackers…
CVE-2024-27656 — CVSS 8.8 (high): D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow via the Cookie parameter. This vulnerability allows attackers to…
CVE-2024-27657 — CVSS 8.8 (high): D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow via the User-Agent parameter. This vulnerability allows attackers…
CVE-2024-51023 — CVSS 8.8 (high): D-Link DIR_823G 1.0.2B05 was discovered to contain a command injection vulnerability via the Address parameter in the…
CVE-2019-15529 — CVSS 8.8 (high): An issue was discovered on D-Link DIR-823G devices with firmware V1.0.2B05. There is a command injection in HNAP1 (exploitable with…
CVE-2019-7390 — CVSS 8.6 (high): An issue was discovered in /bin/goahead on D-Link DIR-823G devices with firmware 1.02B03. There is incorrect access control allowing remote…
CVE-2019-7298 — CVSS 8.1 (high): An issue was discovered on D-Link DIR-823G devices with firmware through 1.02B03. A command Injection vulnerability allows attackers to…
CVE-2024-51024 — CVSS 8.0 (high): D-Link DIR_823G 1.0.2B05 was discovered to contain a command injection vulnerability via the HostName parameter in the SetWanSettings…
CVE-2023-44839 — CVSS 7.5 (high): D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow via the Encryption parameter in the SetWLanRadioSecurity function…
CVE-2019-7388 — CVSS 7.5 (high): An issue was discovered in /bin/goahead on D-Link DIR-823G devices with firmware 1.02B03. There is incorrect access control allowing remote…
CVE-2019-7389 — CVSS 7.5 (high): An issue was discovered in /bin/goahead on D-Link DIR-823G devices with the firmware 1.02B03. There is incorrect access control allowing…
CVE-2019-8392 — CVSS 7.5 (high): An issue was discovered on D-Link DIR-823G devices with firmware 1.02B03. There is incorrect access control allowing remote attackers to…
CVE-2023-26615 — CVSS 7.5 (high): D-Link DIR-823G firmware version 1.02B05 has a password reset vulnerability, which originates from the SetMultipleActions API, allowing…
CVE-2023-44828 — CVSS 7.5 (high): D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow via the CurrentPassword parameter in the CheckPasswdSettings…
CVE-2023-44829 — CVSS 7.5 (high): D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow via the AdminPassword parameter in the SetDeviceSettings function…
CVE-2023-44830 — CVSS 7.5 (high): D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow via the EndTime parameter in the SetParentsControlInfo function…
CVE-2023-44831 — CVSS 7.5 (high): D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow via the Type parameter in the SetWLanRadioSettings function. This…
CVE-2023-44832 — CVSS 7.5 (high): D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow via the MacAddress parameter in the SetWanSettings function. This…
CVE-2023-44833 — CVSS 7.5 (high): D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow via the GuardInt parameter in the SetWLanRadioSettings function…
CVE-2023-44834 — CVSS 7.5 (high): D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow via the StartTime parameter in the SetParentsControlInfo function…
CVE-2023-44835 — CVSS 7.5 (high): D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow via the Mac parameter in the SetParentsControlInfo function. This…
CVE-2023-44836 — CVSS 7.5 (high): D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow via the SSID parameter in the SetWLanRadioSettings function. This…
CVE-2023-44837 — CVSS 7.5 (high): D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow via the Password parameter in the SetWanSettings function. This…
CVE-2023-44838 — CVSS 7.5 (high): D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow via the TXPower parameter in the SetWLanRadioSettings function…
CVE-2024-44408 — CVSS 7.5 (high): D-Link DIR-823G v1.0.2B05_20181207 is vulnerable to Information Disclosure. The device allows unauthorized configuration file downloads…
CVE-2025-60331 — CVSS 7.5 (high): D-Link DIR-823G A1 v1.0.2B05 was discovered to contain a buffer overflow in the FillMacCloneMac parameter in the /EXCU_SHELL endpoint. This…
CVE-2025-60332 — CVSS 7.5 (high): A NULL pointer dereference in the SetWLanRadioSettings function of D-Link DIR-823G A1 v1.0.2B05 allows attackers to cause a Denial of…
CVE-2024-13030 — CVSS 7.3 (high): A vulnerability was found in D-Link DIR-823G 1.0.2B05_20181207. It has been rated as critical. This issue affects the function…
CVE-2025-2359 — CVSS 7.3 (high): A vulnerability classified as critical has been found in D-Link DIR-823G 1.0.2B05_20181207. Affected is the function SetDDNSSettings of the…
CVE-2025-2360 — CVSS 7.3 (high): A vulnerability classified as critical was found in D-Link DIR-823G 1.0.2B05_20181207. Affected by this vulnerability is the function…
CVE-2026-4193 — CVSS 7.3 (high): A security vulnerability has been detected in D-Link DIR-823G 1.0.2B05. The affected element is the function GetDDNSSettings/GetDeviceDomain…
CVE-2024-27661 — CVSS 6.5 (medium): D-Link DIR-823G A1V1.0.2B05 was discovered to contain Null-pointer dereferences in sub_4484A8(). This vulnerability allows attackers to…
CVE-2024-33345 — CVSS 6.5 (medium): D-Link DIR-823G A1V1.0.2B05 was found to contain a Null-pointer dereference in the main function of upload_firmware.cgi, which allows…
CVE-2024-27658 — CVSS 6.5 (medium): D-Link DIR-823G A1V1.0.2B05 was discovered to contain Null-pointer dereferences in sub_4484A8(). This vulnerability allows attackers to…
CVE-2024-27659 — CVSS 6.5 (medium): D-Link DIR-823G A1V1.0.2B05 was discovered to contain Null-pointer dereferences in sub_42AF30(). This vulnerability allows attackers to…
CVE-2024-27660 — CVSS 6.5 (medium): D-Link DIR-823G A1V1.0.2B05 was discovered to contain a Null-pointer dereferences in sub_41C488(). This vulnerability allows attackers to…
CVE-2024-27662 — CVSS 6.5 (medium): D-Link DIR-823G A1V1.0.2B05 was discovered to contain a Null-pointer dereferences in sub_4110f4(). This vulnerability allows attackers to…
CVE-2025-60675 — CVSS 5.4 (medium): A command injection vulnerability exists in the D-Link DIR-823G router firmware DIR823G_V1.0.2B05_20181207.bin in the timelycheck and…
CVE-2025-60671 — CVSS 5.4 (medium): A command injection vulnerability exists in the D-Link DIR-823G router firmware DIR823G_V1.0.2B05_20181207.bin in the timelycheck and…
CVE-2026-11492 — CVSS 4.3 (medium): A security flaw has been discovered in D-Link DIR-823G 1.0.2B05. The affected element is an unknown function of the file /etc/vsftpd.conf…