Dlink Dir-846 Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Dlink Dir-846 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (13)
CVE-2022-46642 — CVSS 9.9 (critical): D-Link DIR-846 A1_FW100A43 was discovered to contain a command injection vulnerability via the auto_upgrade_hour parameter in the…
CVE-2022-46641 — CVSS 9.9 (critical): D-Link DIR-846 A1_FW100A43 was discovered to contain a command injection vulnerability via the lan(0)_dhcps_staticlist parameter in the…
CVE-2020-21016 — CVSS 9.8 (critical): D-Link DIR-846 devices with firmware 100A35 allow remote attackers to execute arbitrary code as root via HNAP1/control/SetGuestWLanSettings…
CVE-2020-27600 — CVSS 9.8 (critical): HNAP1/control/SetMasterWLanSettings.php in D-Link D-Link Router DIR-846 DIR-846 A1_100.26 allows remote attackers to execute arbitrary…
CVE-2021-46314 — CVSS 9.8 (critical): A Remote Command Execution (RCE) vulnerability exists in HNAP1/control/SetNetworkTomographySettings.php of D-Link Router DIR-846…
CVE-2021-46315 — CVSS 9.8 (critical): Remote Command Execution (RCE) vulnerability exists in HNAP1/control/SetWizardConfig.php in D-Link Router DIR-846 DIR846A1_FW100A43.bin and…
CVE-2021-46319 — CVSS 9.8 (critical): Remote Code Execution (RCE) vulnerability exists in D-Link Router DIR-846 DIR846A1_FW100A43.bin and DIR846enFW100A53DLA-Retail.bin…
CVE-2019-17509 — CVSS 9.8 (critical): D-Link DIR-846 devices with firmware 100A35 allow remote attackers to execute arbitrary OS commands as root by leveraging admin access and…
CVE-2019-17510 — CVSS 9.8 (critical): D-Link DIR-846 devices with firmware 100A35 allow remote attackers to execute arbitrary OS commands as root by leveraging admin access and…
CVE-2023-33735 — CVSS 9.8 (critical): D-Link DIR-846 v1.00A52 was discovered to contain a remote command execution (RCE) vulnerability via the tomography_ping_address parameter…
CVE-2023-6580 — CVSS 8.8 (high): A vulnerability, which was classified as critical, was found in D-Link DIR-846 FW100A53DBR. This affects an unknown part of the file…
CVE-2022-46552 — CVSS 8.8 (high): D-Link DIR-846 Firmware FW100A53DBR was discovered to contain a remote command execution (RCE) vulnerability via the lan(0)_dhcps_staticlist…