Vulnerabilities in D-Link

778 results
Vexday analysis

Com 777 CVEs catalogadas e 57 surgidas nos últimos 90 dias, o portfólio de vulnerabilidades da D-Link apresenta um ritmo de descoberta que exige monitoramento contínuo. A taxa de exploração ativa está em linha com a média geral do catálogo, mas o destaque crítico é CVE-2024-3273, que possui EPSS máximo de 1.0 — indicando probabilidade extremamente alta de exploração ativa —, e deve ser tratada como prioridade absoluta de mitigação. A presença de 80 CVEs com PoC pública, combinada com 56 falhas de severidade crítica, amplia significativamente a superfície de ataque disponível para agentes mal-intencionados. O tipo de falha mais frequente, CWE-121 (stack-based buffer overflow), é historicamente associado à execução remota de código, o que reforça a urgência de aplicar correções e segmentar dispositivos D-Link expostos à rede.

CVE-2023-35752HIGHD-Link DAP-2622 DDP Set AG Profile Auth Password Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-35739HIGHD-Link DAP-2622 DDP Configuration Backup Server IPv6 Address Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-35736HIGHD-Link DAP-2622 DDP Change ID Password New Password Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-35755HIGHD-Link DAP-2622 DDP Set Date-Time Auth Username Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-35730HIGHD-Link DAP-2622 DDP Reset Auth Password Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-35745HIGHD-Link DAP-2622 DDP Configuration Restore Filename Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-35754HIGHD-Link DAP-2622 DDP Set AG Profile NMS URL Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-41204HIGHD-Link DAP-1325 SetAPLanSettings SecondaryDNS Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-35727HIGHD-Link DAP-2622 DDP Reboot Auth Username Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-41212HIGHD-Link DAP-1325 SetTriggerAPValidate Key Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-35740HIGHD-Link DAP-2622 DDP Configuration Backup Server Address Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-37310HIGHD-Link DAP-2622 DDP Set Device Info Auth Username Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-41205HIGHD-Link DAP-1325 SetAPLanSettings SubnetMask Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-35742HIGHD-Link DAP-2622 DDP Configuration Restore Auth Username Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-41213HIGHD-Link DAP-1325 setDhcpAssignRangeUpdate lan_ipaddr Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-41202HIGHD-Link DAP-1325 SetAPLanSettings Mode Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-35728HIGHD-Link DAP-2622 DDP Reboot Auth Password Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-35756HIGHD-Link DAP-2622 DDP Set Date-Time Auth Password Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-41214HIGHD-Link DAP-1325 setDhcpAssignRangeUpdate lan_ipaddr Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-41206HIGHD-Link DAP-1325 SetHostIPv6Settings IPv6Mode Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%