D-link - Dir-878 Firmware CVE

Filtered by vendor D-link Subscribe

Filtered by product Dir-878 Firmware

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2019-9124	1 D-link	2 Dir-878, Dir-878 Firmware	2020-08-24	7.5 HIGH	9.8 CRITICAL
An issue was discovered on D-Link DIR-878 1.12B01 devices. At the /HNAP1 URI, an attacker can log in with a blank password.
CVE-2019-9125	1 D-link	2 Dir-878, Dir-878 Firmware	2020-08-24	7.5 HIGH	9.8 CRITICAL
An issue was discovered on D-Link DIR-878 1.12B01 devices. Because strncpy is misused, there is a stack-based buffer overflow vulnerability that does not require authentication via the HNAP_AUTH HTTP header.

Vulnerabilities (CVE)