Vulnerabilities in D-Link

778 results

Vexday analysis

Com 777 CVEs catalogadas e 57 surgidas nos últimos 90 dias, o portfólio de vulnerabilidades da D-Link apresenta um ritmo de descoberta que exige monitoramento contínuo. A taxa de exploração ativa está em linha com a média geral do catálogo, mas o destaque crítico é CVE-2024-3273, que possui EPSS máximo de 1.0 — indicando probabilidade extremamente alta de exploração ativa —, e deve ser tratada como prioridade absoluta de mitigação. A presença de 80 CVEs com PoC pública, combinada com 56 falhas de severidade crítica, amplia significativamente a superfície de ataque disponível para agentes mal-intencionados. O tipo de falha mais frequente, CWE-121 (stack-based buffer overflow), é historicamente associado à execução remota de código, o que reforça a urgência de aplicar correções e segmentar dispositivos D-Link expostos à rede.

CVE-2018-25358HIGHD-Link DIR601 2.02NA Credential Disclosure via my_cgi.cgiEPSS 0.6%CVE-2023-41217HIGHD-Link DIR-3040 prog.cgi SetQuickVPNSettings Password Stack-Based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.6%CVE-2026-12174HIGHD-Link DCS-935L HTTP rhea snprintf format stringEPSS 0.6%CVE-2025-4858MEDIUMD-Link DAP-2695 ARP Spoofing Prevention Page adv_arpspoofing.php cross site scriptingEPSS 0.6%CVE-2025-4860MEDIUMD-Link DAP-2695 Static Pool Settings Page adv_dhcps.php cross site scriptingEPSS 0.6%CVE-2025-4903MEDIUMD-Link DI-7003GV2 webgl.asp sub_41F4F0 unverified password changeEPSS 0.6%CVE-2025-9003MEDIUMD-Link DIR-818LW DHCP Reserved Address bsc_lan.php cross site scriptingEPSS 0.6%CVE-2026-7026MEDIUMD-Link DGS-3420 System Information Settings cross site scriptingEPSS 0.6%CVE-2026-5312MEDIUMD-Link DNS-1550-04 dsk_mgr.cgi Get_current_raidtype access controlEPSS 0.5%CVE-2024-5292HIGHD-Link Network Assistant Uncontrolled Search Path Element Local Privilege Escalation VulnerabilityEPSS 0.5%CVE-2025-15245MEDIUMD-Link DCS-850L Firmware Update Service uploadfirmware path traversalEPSS 0.5%CVE-2023-50212MEDIUMD-Link G416 httpd Improper Handling of Exceptional Conditions Information Disclosure VulnerabilityEPSS 0.5%CVE-2026-11492MEDIUMD-Link DIR-823G vsftpd vsftpd.conf least privilege violationEPSS 0.5%CVE-2025-34253MEDIUMD-Link Nuclias Connect <= v1.3.1.4 Stored Cross-Site Scripting (XSS)EPSS 0.5%CVE-2026-5815HIGHD-Link DIR-645 hedwig.cgi hedwigcgi_main stack-based overflowEPSS 0.5%CVE-2026-10206HIGHD-Link DI-8400 dbsrv.asp stack-based overflowEPSS 0.5%CVE-2026-2928HIGHD-Link DWR-M960 WLAN Encryption Configuration Endpoint formWlEncrypt sub_452CCC stack-based overflowEPSS 0.5%CVE-2026-42374CRITICALD-Link DIR-600L B1 Hardcoded Telnet Backdoor CredentialsEPSS 0.5%CVE-2026-42373CRITICALD-Link DIR-605L B2 Hardcoded Telnet Backdoor CredentialsEPSS 0.5%CVE-2026-42375CRITICALD-Link DIR-600L A1 Hardcoded Telnet Backdoor CredentialsEPSS 0.5%

← previouspage 38 / 39next →