Vulnerabilidades em D-Link

777 resultados
Análise Vexday

Com 777 CVEs catalogadas e 57 surgidas nos últimos 90 dias, o portfólio de vulnerabilidades da D-Link apresenta um ritmo de descoberta que exige monitoramento contínuo. A taxa de exploração ativa está em linha com a média geral do catálogo, mas o destaque crítico é CVE-2024-3273, que possui EPSS máximo de 1.0 — indicando probabilidade extremamente alta de exploração ativa —, e deve ser tratada como prioridade absoluta de mitigação. A presença de 80 CVEs com PoC pública, combinada com 56 falhas de severidade crítica, amplia significativamente a superfície de ataque disponível para agentes mal-intencionados. O tipo de falha mais frequente, CWE-121 (stack-based buffer overflow), é historicamente associado à execução remota de código, o que reforça a urgência de aplicar correções e segmentar dispositivos D-Link expostos à rede.

CVE-2023-37323HIGHD-Link DAP-2622 DDP Set SSID List PSK Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2022-40719HIGHThis vulnerability allows network-adjacent attackers to execute arbitrary commands on affected installations of D-Link DIR-2150 4.0.1 routerEPSS 0.9%CVE-2025-10034HIGHD-Link DIR-825 httpd ping6_response.cg get_ping6_app_stat buffer overflowEPSS 0.9%CVE-2025-6932MEDIUMD-Link DCS-7517 Qlync Password Generation httpd g_F_n_GenPassForQlync hard-coded passwordEPSS 0.9%CVE-2023-35724HIGHD-Link DAP-2622 Telnet CLI Use of Hardcoded Credentials Authentication Bypass VulnerabilityEPSS 0.9%CVE-2026-2857HIGHD-Link DWR-M960 Port Forwarding Configuration Endpoint formPortFw sub_423E00 stack-based overflowEPSS 0.9%CVE-2026-2853HIGHD-Link DWR-M960 System Log Configuration Endpoint formSysLog sub_462E14 stack-based overflowEPSS 0.9%CVE-2025-8949HIGHD-Link DIR-825 httpd ping_response.cgi get_ping_app_stat stack-based overflowEPSS 0.9%CVE-2022-36786CRITICALDLINK - DSL-224 Post-auth RCE.EPSS 0.9%CVE-2023-35755HIGHD-Link DAP-2622 DDP Set Date-Time Auth Username Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-41202HIGHD-Link DAP-1325 SetAPLanSettings Mode Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-35742HIGHD-Link DAP-2622 DDP Configuration Restore Auth Username Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-41205HIGHD-Link DAP-1325 SetAPLanSettings SubnetMask Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-37310HIGHD-Link DAP-2622 DDP Set Device Info Auth Username Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-35718HIGHD-Link DAP-2622 DDP Change ID Password Auth Password Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-35736HIGHD-Link DAP-2622 DDP Change ID Password New Password Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-41203HIGHD-Link DAP-1325 SetAPLanSettings PrimaryDNS Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-35752HIGHD-Link DAP-2622 DDP Set AG Profile Auth Password Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-35737HIGHD-Link DAP-2622 DDP Configuration Backup Auth Username Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-41206HIGHD-Link DAP-1325 SetHostIPv6Settings IPv6Mode Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%