Vulnerabilities in D-Link

778 results

Vexday analysis

Com 777 CVEs catalogadas e 57 surgidas nos últimos 90 dias, o portfólio de vulnerabilidades da D-Link apresenta um ritmo de descoberta que exige monitoramento contínuo. A taxa de exploração ativa está em linha com a média geral do catálogo, mas o destaque crítico é CVE-2024-3273, que possui EPSS máximo de 1.0 — indicando probabilidade extremamente alta de exploração ativa —, e deve ser tratada como prioridade absoluta de mitigação. A presença de 80 CVEs com PoC pública, combinada com 56 falhas de severidade crítica, amplia significativamente a superfície de ataque disponível para agentes mal-intencionados. O tipo de falha mais frequente, CWE-121 (stack-based buffer overflow), é historicamente associado à execução remota de código, o que reforça a urgência de aplicar correções e segmentar dispositivos D-Link expostos à rede.

CVE-2025-5215HIGHD-Link DCS-5020L ptdc.cgi websReadEvent stack-based overflowEPSS 1.0%CVE-2024-9783HIGHD-Link DIR-619L B1 formLogDnsquery buffer overflowEPSS 0.9%CVE-2025-5912HIGHD-Link DIR-632 HTTP POST Request do_file stack-based overflowEPSS 0.9%CVE-2024-9784HIGHD-Link DIR-619L B1 formResetStatistic buffer overflowEPSS 0.9%CVE-2023-50214HIGHD-Link G416 nodered tar File Handling Command Injection Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-50215HIGHD-Link G416 nodered gz File Handling Command Injection Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-50203HIGHD-Link G416 nodered chmod Command Injection Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-50204HIGHD-Link G416 flupl pythonapp Command Injection Remote Code Execution VulnerabilityEPSS 0.9%CVE-2025-10093MEDIUMD-Link DIR-852 Device Configuration getcfg.php phpcgi_main information disclosureEPSS 0.9%CVE-2023-32138HIGHD-Link DAP-1360 webproc Heap-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2022-43648HIGHThis vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-3040 1.20B03 routers.EPSS 0.9%CVE-2025-2548MEDIUMD-Link DIR-618/DIR-605L formSetDomainFilter access controlEPSS 0.9%CVE-2025-2549MEDIUMD-Link DIR-618/DIR-605L formSetPassword access controlEPSS 0.9%CVE-2025-11338HIGHD-Link DI-7100G C1 jhttpd login.cgi sub_4C0990 buffer overflowEPSS 0.9%CVE-2023-50216HIGHD-Link G416 awsfile tar File Handling Command Injection Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-50206HIGHD-Link G416 flupl query_type edit Command Injection Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-50201HIGHD-Link G416 cfgsave upusb Command Injection Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-50217HIGHD-Link G416 awsfile rm Command Injection Remote Code Execution VulnerabilityEPSS 0.9%CVE-2025-4753MEDIUMD-Link DI-7003GV2 login.data information disclosureEPSS 0.9%CVE-2023-50200HIGHD-Link G416 cfgsave backusb Command Injection Remote Code Execution VulnerabilityEPSS 0.9%

← previouspage 26 / 39next →