Dlink Dir-878 Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Dlink Dir-878 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (39)
CVE-2021-44882 — CVSS 9.8 (critical): D-Link device DIR_878_FW1.30B08_Hotfix_02 was discovered to contain a command injection vulnerability in the twsystem function. This…
CVE-2023-27720 — CVSS 9.8 (critical): D-Link DIR878 1.30B08 was discovered to contain a stack overflow in the sub_48d630 function. This vulnerability allows attackers to cause a…
CVE-2021-30072 — CVSS 9.8 (critical): An issue was discovered in prog.cgi on D-Link DIR-878 1.30B08 devices. Because strcat is misused, there is a stack-based buffer overflow…
CVE-2021-44880 — CVSS 9.8 (critical): D-Link devices DIR_878 DIR_878_FW1.30B08_Hotfix_02 and DIR_882 DIR_882_FW1.30B06_Hotfix_02 were discovered to contain a command injection…
CVE-2022-43184 — CVSS 9.8 (critical): D-Link DIR878 1.30B08 Hotfix_04 was discovered to contain a command injection vulnerability via the component /bin/proc.cgi.
CVE-2023-24798 — CVSS 9.8 (critical): D-Link DIR878 DIR_878_FW120B05 was discovered to contain a stack overflow in the sub_475FB0 function. This vulnerability allows attackers…
CVE-2023-24799 — CVSS 9.8 (critical): D-Link DIR878 DIR_878_FW120B05 was discovered to contain a stack overflow in the sub_48AF78 function. This vulnerability allows attackers…
CVE-2023-24800 — CVSS 9.8 (critical): D-Link DIR878 DIR_878_FW120B05 was discovered to contain a stack overflow in the sub_495220 function. This vulnerability allows attackers…
CVE-2022-26670 — CVSS 8.8 (high): D-Link DIR-878 has inadequate filtering for special characters in the webpage input field. An unauthenticated LAN attacker can perform…
CVE-2022-41140 — CVSS 8.8 (high): This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of multiple D-Link routers…
CVE-2019-8312 — CVSS 8.8 (high): An issue was discovered on D-Link DIR-878 devices with firmware 1.12A1. This issue is a Command Injection allowing a remote attacker to…
CVE-2019-8313 — CVSS 8.8 (high): An issue was discovered on D-Link DIR-878 devices with firmware 1.12A1. This issue is a Command Injection allowing a remote attacker to…
CVE-2019-8314 — CVSS 8.8 (high): An issue was discovered on D-Link DIR-878 devices with firmware 1.12A1. This issue is a Command Injection allowing a remote attacker to…
CVE-2019-8315 — CVSS 8.8 (high): An issue was discovered on D-Link DIR-878 devices with firmware 1.12A1. This issue is a Command Injection allowing a remote attacker to…
CVE-2019-8316 — CVSS 8.8 (high): An issue was discovered on D-Link DIR-878 devices with firmware 1.12A1. This issue is a Command Injection allowing a remote attacker to…
CVE-2019-8317 — CVSS 8.8 (high): An issue was discovered on D-Link DIR-878 devices with firmware 1.12A1. This issue is a Command Injection allowing a remote attacker to…
CVE-2019-8318 — CVSS 8.8 (high): An issue was discovered on D-Link DIR-878 devices with firmware 1.12A1. This issue is a Command Injection allowing a remote attacker to…
CVE-2019-8319 — CVSS 8.8 (high): An issue was discovered on D-Link DIR-878 devices with firmware 1.12A1. This issue is a Command Injection allowing a remote attacker to…
CVE-2020-8863 — CVSS 8.8 (high): This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of D-Link DIR-867, DIR-878, and…
CVE-2020-8864 — CVSS 8.8 (high): This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of D-Link DIR-867, DIR-878, and…
CVE-2024-48637 — CVSS 8.0 (high): D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command injection vulnerability via the VLANID:1/VID…
CVE-2024-48638 — CVSS 8.0 (high): D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command injection vulnerability via the SubnetMask…
CVE-2024-48629 — CVSS 8.0 (high): D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command injection vulnerability via the IPAddress…
CVE-2024-48630 — CVSS 8.0 (high): D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command injection vulnerability via the MacAddress…
CVE-2024-48631 — CVSS 8.0 (high): D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command injection vulnerability via the SSID parameter in…
CVE-2024-48632 — CVSS 8.0 (high): D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain multiple command injection vulnerabilities via the…
CVE-2024-48633 — CVSS 8.0 (high): D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain multiple command injection vulnerabilities via the…
CVE-2024-48634 — CVSS 8.0 (high): D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command injection vulnerability via the key parameter in…
CVE-2024-48635 — CVSS 8.0 (high): D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command injection vulnerability via the VLANID:2/VID…
CVE-2024-48636 — CVSS 8.0 (high): D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command injection vulnerability via the VLANID:0/VID…
CVE-2022-1262 — CVSS 7.8 (high): A command injection vulnerability in the protest binary allows an attacker with access to the remote command line interface to execute…
CVE-2025-60674 — CVSS 6.8 (medium): A stack buffer overflow vulnerability exists in the D-Link DIR-878A1 router firmware FW101B04.bin in the rc binary's USB storage handling…
CVE-2025-60672 — CVSS 6.5 (medium): An unauthenticated command injection vulnerability exists in the D-Link DIR-878A1 router firmware FW101B04.bin. The vulnerability occurs in…
CVE-2025-60673 — CVSS 6.5 (medium): An unauthenticated command injection vulnerability exists in the D-Link DIR-878A1 router firmware FW101B04.bin. The vulnerability occurs in…
CVE-2025-60676 — CVSS 6.5 (medium): An unauthenticated command injection vulnerability exists in the D-Link DIR-878A1 router firmware FW101B04.bin. The vulnerability occurs in…
CVE-2024-0717 — CVSS 5.3 (medium): A vulnerability classified as critical was found in D-Link DAP-1360, DIR-300, DIR-615, DIR-615GF, DIR-615S, DIR-615T, DIR-620, DIR-620S…
CVE-2025-0481 — CVSS 5.3 (medium): A vulnerability classified as problematic has been found in D-Link DIR-878 1.03. Affected is an unknown function of the file /dllog.cgi of…