Skip to main content

Dir 866L Firmware

2 CVEs product

Monthly

CVE-2019-17663 MEDIUM This Month

D-Link DIR-866L 1.03B04 devices allow XSS via HtmlResponseMessage in the device common gateway interface, leading to common injection. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS D-Link Dir 866L Firmware
NVD
CVSS 3.1
6.1
EPSS
1.0%
CVE-2019-16920 CRITICAL POC KEV THREAT Act Now

Unauthenticated remote code execution occurs in D-Link products such as DIR-655C, DIR-866L, DIR-652, and DHP-1565. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

D-Link RCE Command Injection Dir 655 Firmware Dir 866L Firmware +8
NVD
CVSS 3.1
9.8
EPSS
100.0%
EPSS 1% CVSS 6.1
MEDIUM This Month

D-Link DIR-866L 1.03B04 devices allow XSS via HtmlResponseMessage in the device common gateway interface, leading to common injection. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS D-Link Dir 866L Firmware
NVD
EPSS 100% CVSS 9.8
CRITICAL POC KEV THREAT Act Now

Unauthenticated remote code execution occurs in D-Link products such as DIR-655C, DIR-866L, DIR-652, and DHP-1565. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

D-Link RCE Command Injection +10
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy