Vulnerabilidades en D-Link

778 resultados
Análisis Vexday

Com 777 CVEs catalogadas e 57 surgidas nos últimos 90 dias, o portfólio de vulnerabilidades da D-Link apresenta um ritmo de descoberta que exige monitoramento contínuo. A taxa de exploração ativa está em linha com a média geral do catálogo, mas o destaque crítico é CVE-2024-3273, que possui EPSS máximo de 1.0 — indicando probabilidade extremamente alta de exploração ativa —, e deve ser tratada como prioridade absoluta de mitigação. A presença de 80 CVEs com PoC pública, combinada com 56 falhas de severidade crítica, amplia significativamente a superfície de ataque disponível para agentes mal-intencionados. O tipo de falha mais frequente, CWE-121 (stack-based buffer overflow), é historicamente associado à execução remota de código, o que reforça a urgência de aplicar correções e segmentar dispositivos D-Link expostos à rede.

CVE-2025-6367HIGHD-Link DIR-619L formSetDomainFilter stack-based overflowEPSS 0.8%CVE-2025-6369HIGHD-Link DIR-619L formdumpeasysetup stack-based overflowEPSS 0.8%CVE-2025-6372HIGHD-Link DIR-619L formSetWizard1 stack-based overflowEPSS 0.8%CVE-2025-6371HIGHD-Link DIR-619L formSetEnableWizard stack-based overflowEPSS 0.8%CVE-2025-10779HIGHD-Link DCS-935L HNAP1 sub_402280 stack-based overflowEPSS 0.8%CVE-2025-6617HIGHD-Link DIR-619L formAdvanceSetup stack-based overflowEPSS 0.8%CVE-2024-13103MEDIUMD-Link DIR-816 A2 Virtual Service form2AddVrtsrv.cgi access controlEPSS 0.8%CVE-2025-6158HIGHD-Link DIR-665 HTTP POST Request sub_AC78 stack-based overflowEPSS 0.8%CVE-2025-6328HIGHD-Link DIR-815 hedwig.cgi sub_403794 stack-based overflowEPSS 0.8%CVE-2025-13189HIGHD-Link DIR-816L gena.cgi genacgi_main stack-based overflowEPSS 0.8%CVE-2025-13191HIGHD-Link DIR-816L soap.cgi soapcgi_main stack-based overflowEPSS 0.8%CVE-2025-11408HIGHD-Link DI-7001 MINI dbsrv.asp buffer overflowEPSS 0.8%CVE-2025-6881HIGHD-Link DI-8100 jhttpd pppoe_base.asp buffer overflowEPSS 0.8%CVE-2021-34862HIGHThis vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2020 1.01rc001 routerEPSS 0.8%CVE-2021-34861HIGHThis vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2020 1.01rc001 routerEPSS 0.8%CVE-2026-4211HIGHD-Link DNS-1550-04 local_backup_mgr.cgi Local_Backup_Info stack-based overflowEPSS 0.8%CVE-2026-4212HIGHD-Link DNS-1550-04 download_mgr.cgi Downloads_Schedule_Info stack-based overflowEPSS 0.8%CVE-2026-4214HIGHD-Link DNS-1550-04 app_mgr.cgi UPnP_AV_Server_Path_Setting stack-based overflowEPSS 0.8%CVE-2024-13102MEDIUMD-Link DIR-816 A2 DDNS Service access controlEPSS 0.8%CVE-2024-13105MEDIUMD-Link DIR-816 A2 DHCPD Setting form2Dhcpd.cgi access controlEPSS 0.8%