📦 Dir 645 Firmware

This CVE describes an unauthenticated remote command execution vulnerability in multiple D-Link DIR-series routers. Attackers can send specially crafted HTTP POST requests to the service.cgi endpoint ...

CVE-2023-36089 is an authentication bypass vulnerability in D-Link DIR-645 routers that allows remote attackers to gain escalated privileges without valid credentials. This affects firmware version 1....

This CVE describes a command injection vulnerability in D-Link DIR-645 routers where attackers can execute arbitrary commands via the QUERY_STRING parameter in the __ajax_explorer.sgi endpoint. This a...

This vulnerability in D-Link DIR-645 routers allows remote attackers to execute arbitrary code via a buffer overflow in the HNAP service. Attackers can exploit this by sending specially crafted SOAPAc...

This vulnerability allows remote attackers to execute arbitrary commands on D-Link DIR-645 routers by exploiting a command injection flaw in the SOAP CGI service. Attackers can take full control of af...

This critical vulnerability in D-Link DIR-645 routers allows remote attackers to execute arbitrary commands via command injection in the ssdpcgi component. Attackers can exploit this without authentic...