Huanbin Ruan

**Name of the Vulnerable Software and Affected Versions** D-Link DIR-816 A2 version 1.10 B05 **Description** The issue allows unauthenticated attackers to arbitrarily reset the device. This can be achieved by sending a crafted `tokenid` parameter to the "/goform/form2Reboot.cgi" API endpoint. **Recommendations** For D-Link DIR-816 A2 version 1.10 B05, avoid using the `tokenid` parameter in the "/goform/form2Reboot.cgi" API endpoint until the issue is resolved. As a temporary workaround, consider restricting access to the "/goform/form2Reboot.cgi" endpoint to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** D-link DIR-810L versions all D-link DIR-820L/LW versions all D-link DIR-826L versions all D-link DIR-830L versions all D-link DIR-836L versions all **Description** A Remote Command Execution vulnerability exists in the DDNS function of the affected routers, allowing a remote attacker to execute arbitrary commands. The issue is related to insufficient checking of arguments passed to a command. The affected routers have reached their End of Life (EOL) / End of Service Life (EOS) Life-Cycle, and as such, this issue will not be patched. **Recommendations** For D-link DIR-810L, consider disabling the DDNS function to minimize the risk of exploitation. For D-link DIR-820L/LW, consider disabling the DDNS function to minimize the risk of exploitation. For D-link DIR-826L, consider disabling the DDNS function to minimize the risk of exploitation. For D-link DIR-830L, consider disabling the DDNS function to minimize the risk of exploitation. For D-link DIR-836L, consider disabling the DDNS function to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.