Skip to main content

Dsr 250N Firmware

8 CVEs product

Monthly

CVE-2024-57376 HIGH This Week

D-Link DSR series business routers (DSR-150, DSR-150N, DSR-250, DSR-250N, DSR-500N, DSR-1000N) with firmware 3.13 through 3.17B901C contain a buffer overflow that allows unauthenticated remote code execution. The entire DSR business router product line is affected.

D-Link Buffer Overflow RCE Dsr 150 Firmware Dsr 150N Firmware +4
NVD
CVSS 3.1
8.8
EPSS
54.3%
CVE-2020-25759 HIGH This Week

An issue was discovered on D-Link DSR-250 3.17 devices. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

D-Link Information Disclosure Dsr 150 Firmware Dsr 150N Firmware Dsr 250 Firmware +7
NVD
CVSS 3.1
8.8
EPSS
2.3%
CVE-2020-25758 HIGH This Week

An issue was discovered on D-Link DSR-250 3.17 devices. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Code Injection D-Link Dsr 150 Firmware Dsr 150N Firmware Dsr 250 Firmware +7
NVD
CVSS 3.1
8.8
EPSS
1.2%
CVE-2020-25757 HIGH This Week

A lack of input validation and access controls in Lua CGIs on D-Link DSR VPN routers may result in arbitrary input being passed to system command APIs, resulting in arbitrary command execution with. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

D-Link Information Disclosure Dsr 150 Firmware Dsr 150N Firmware Dsr 250 Firmware +7
NVD
CVSS 3.1
8.8
EPSS
2.0%
CVE-2020-26567 MEDIUM POC THREAT This Month

An issue was discovered on D-Link DSR-250N before 3.17B devices. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

D-Link Authentication Bypass Dsr 250N Firmware
NVD Exploit-DB
CVSS 3.1
5.5
EPSS
17.2%
CVE-2013-7005 MEDIUM POC This Month

D-Link DSR-150 with firmware before 1.08B44; DSR-150N with firmware before 1.05B64; DSR-250 and DSR-250N with firmware before 1.08B44; and DSR-500, DSR-500N, DSR-1000, and DSR-1000N with firmware. Rated medium severity (CVSS 4.9), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure D-Link Dsr 150 Firmware Dsr 150 Dsr 250 Firmware +12
NVD Exploit-DB
CVSS 2.0
4.9
EPSS
0.0%
CVE-2013-7004 HIGH POC This Week

D-Link DSR-150 with firmware before 1.08B44; DSR-150N with firmware before 1.05B64; DSR-250 and DSR-250N with firmware before 1.08B44; and DSR-500, DSR-500N, DSR-1000, and DSR-1000N with firmware. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

D-Link Authentication Bypass Dsr 500 Firmware Dsr 500 Dsr 150N Firmware +12
NVD Exploit-DB
CVSS 2.0
7.8
EPSS
0.3%
CVE-2013-5946 CRITICAL POC Act Now

The runShellCmd function in systemCheck.htm in D-Link DSR-150 with firmware before 1.08B44; DSR-150N with firmware before 1.05B64; DSR-250 and DSR-250N with firmware before 1.08B44; and DSR-500,. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection D-Link Dsr 500 Firmware Dsr 500 Dsr 150N Firmware +12
NVD Exploit-DB
CVSS 2.0
10.0
EPSS
6.3%
EPSS 54% CVSS 8.8
HIGH This Week

D-Link DSR series business routers (DSR-150, DSR-150N, DSR-250, DSR-250N, DSR-500N, DSR-1000N) with firmware 3.13 through 3.17B901C contain a buffer overflow that allows unauthenticated remote code execution. The entire DSR business router product line is affected.

D-Link Buffer Overflow RCE +6
NVD
EPSS 2% CVSS 8.8
HIGH This Week

An issue was discovered on D-Link DSR-250 3.17 devices. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

D-Link Information Disclosure Dsr 150 Firmware +9
NVD
EPSS 1% CVSS 8.8
HIGH This Week

An issue was discovered on D-Link DSR-250 3.17 devices. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Code Injection D-Link Dsr 150 Firmware +9
NVD
EPSS 2% CVSS 8.8
HIGH This Week

A lack of input validation and access controls in Lua CGIs on D-Link DSR VPN routers may result in arbitrary input being passed to system command APIs, resulting in arbitrary command execution with. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

D-Link Information Disclosure Dsr 150 Firmware +9
NVD
EPSS 17% CVSS 5.5
MEDIUM POC THREAT This Month

An issue was discovered on D-Link DSR-250N before 3.17B devices. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

D-Link Authentication Bypass Dsr 250N Firmware
NVD Exploit-DB
EPSS 0% CVSS 4.9
MEDIUM POC This Month

D-Link DSR-150 with firmware before 1.08B44; DSR-150N with firmware before 1.05B64; DSR-250 and DSR-250N with firmware before 1.08B44; and DSR-500, DSR-500N, DSR-1000, and DSR-1000N with firmware. Rated medium severity (CVSS 4.9), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure D-Link Dsr 150 Firmware +14
NVD Exploit-DB
EPSS 0% CVSS 7.8
HIGH POC This Week

D-Link DSR-150 with firmware before 1.08B44; DSR-150N with firmware before 1.05B64; DSR-250 and DSR-250N with firmware before 1.08B44; and DSR-500, DSR-500N, DSR-1000, and DSR-1000N with firmware. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

D-Link Authentication Bypass Dsr 500 Firmware +14
NVD Exploit-DB
EPSS 6% CVSS 10.0
CRITICAL POC Act Now

The runShellCmd function in systemCheck.htm in D-Link DSR-150 with firmware before 1.08B44; DSR-150N with firmware before 1.05B64; DSR-250 and DSR-250N with firmware before 1.08B44; and DSR-500,. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection D-Link Dsr 500 Firmware +14
NVD Exploit-DB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy