Vulnerabilities in D-Link

778 results
Vexday analysis

Com 777 CVEs catalogadas e 57 surgidas nos últimos 90 dias, o portfólio de vulnerabilidades da D-Link apresenta um ritmo de descoberta que exige monitoramento contínuo. A taxa de exploração ativa está em linha com a média geral do catálogo, mas o destaque crítico é CVE-2024-3273, que possui EPSS máximo de 1.0 — indicando probabilidade extremamente alta de exploração ativa —, e deve ser tratada como prioridade absoluta de mitigação. A presença de 80 CVEs com PoC pública, combinada com 56 falhas de severidade crítica, amplia significativamente a superfície de ataque disponível para agentes mal-intencionados. O tipo de falha mais frequente, CWE-121 (stack-based buffer overflow), é historicamente associado à execução remota de código, o que reforça a urgência de aplicar correções e segmentar dispositivos D-Link expostos à rede.

CVE-2023-41215HIGHD-Link DAP-2622 DDP Set Date-Time Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2022-40719HIGHThis vulnerability allows network-adjacent attackers to execute arbitrary commands on affected installations of D-Link DIR-2150 4.0.1 routerEPSS 0.9%CVE-2025-10034HIGHD-Link DIR-825 httpd ping6_response.cg get_ping6_app_stat buffer overflowEPSS 0.9%CVE-2025-6932MEDIUMD-Link DCS-7517 Qlync Password Generation httpd g_F_n_GenPassForQlync hard-coded passwordEPSS 0.9%CVE-2023-35724HIGHD-Link DAP-2622 Telnet CLI Use of Hardcoded Credentials Authentication Bypass VulnerabilityEPSS 0.9%CVE-2026-2857HIGHD-Link DWR-M960 Port Forwarding Configuration Endpoint formPortFw sub_423E00 stack-based overflowEPSS 0.9%CVE-2026-2853HIGHD-Link DWR-M960 System Log Configuration Endpoint formSysLog sub_462E14 stack-based overflowEPSS 0.9%CVE-2025-8949HIGHD-Link DIR-825 httpd ping_response.cgi get_ping_app_stat stack-based overflowEPSS 0.9%CVE-2022-36786CRITICALDLINK - DSL-224 Post-auth RCE.EPSS 0.9%CVE-2023-35725HIGHD-Link DAP-2622 DDP User Verification Auth Username Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-35735HIGHD-Link DAP-2622 DDP Change ID Password New Username Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-35751HIGHD-Link DAP-2622 DDP Set AG Profile Auth Username Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-41207HIGHD-Link DAP-1325 SetHostIPv6StaticSettings StaticAddress Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-37324HIGHD-Link DAP-2622 DDP Set Wireless Info Auth Username Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-35732HIGHD-Link DAP-2622 DDP Reset Factory Auth Password Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-35726HIGHD-Link DAP-2622 DDP User Verification Auth Password Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-35733HIGHD-Link DAP-2622 DDP Change ID Password Auth Username Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-35737HIGHD-Link DAP-2622 DDP Configuration Backup Auth Username Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-35746HIGHD-Link DAP-2622 DDP Firmware Upgrade Auth Username Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-35729HIGHD-Link DAP-2622 DDP Reset Auth Username Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%