Vulnerabilidades em D-Link

778 resultados

Análise Vexday

Com 777 CVEs catalogadas e 57 surgidas nos últimos 90 dias, o portfólio de vulnerabilidades da D-Link apresenta um ritmo de descoberta que exige monitoramento contínuo. A taxa de exploração ativa está em linha com a média geral do catálogo, mas o destaque crítico é CVE-2024-3273, que possui EPSS máximo de 1.0 — indicando probabilidade extremamente alta de exploração ativa —, e deve ser tratada como prioridade absoluta de mitigação. A presença de 80 CVEs com PoC pública, combinada com 56 falhas de severidade crítica, amplia significativamente a superfície de ataque disponível para agentes mal-intencionados. O tipo de falha mais frequente, CWE-121 (stack-based buffer overflow), é historicamente associado à execução remota de código, o que reforça a urgência de aplicar correções e segmentar dispositivos D-Link expostos à rede.

CVE-2023-50210HIGHD-Link G416 httpd API-AUTH Digest Processing Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.6%CVE-2023-37313HIGHD-Link DAP-2622 DDP Set IPv4 Address Auth Username Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.6%CVE-2023-37322HIGHD-Link DAP-2622 DDP Set SSID List RADIUS Server Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.6%CVE-2023-37315HIGHD-Link DAP-2622 DDP Set IPv6 Address Auth Password Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.6%CVE-2023-50208HIGHD-Link G416 ovpncfg Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.6%CVE-2025-13553HIGHD-Link DWR-M920 formPinManageSetup sub_41C7FC buffer overflowEPSS 0.6%CVE-2022-40717HIGHThis vulnerability allows network-adjacent attackers to execute arbitrary code on affected D-Link DIR-2150 4.0.1 routers. Authentication is EPSS 0.6%CVE-2022-40718HIGHThis vulnerability allows network-adjacent attackers to execute arbitrary code on affected D-Link DIR-2150 4.0.1 routers. Authentication is EPSS 0.6%CVE-2024-9792MEDIUMD-Link DSL-2750U Port Forwarding Page cross site scriptingEPSS 0.6%CVE-2026-2882HIGHD-Link DWR-M960 formDosCfg sub_46385C stack-based overflowEPSS 0.6%CVE-2026-2855HIGHD-Link DWR-M960 DDNS Settings formDdns sub_4648F0 stack-based overflowEPSS 0.6%CVE-2023-53896HIGHD-Link DAP-1325 Hardware A1 Unauthenticated Configuration DownloadEPSS 0.6%CVE-2026-4486HIGHD-Link DIR-513 Web Service formEasySetPassword stack-based overflowEPSS 0.6%CVE-2025-34248HIGHD-Link Nuclias Connect < v1.3.1.4 Directory Traversal to Arbitrary File DeletionEPSS 0.6%CVE-2023-35749HIGHD-Link DAP-2622 DDP Firmware Upgrade Filename Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.6%CVE-2023-35757HIGHD-Link DAP-2622 DDP Set Date-Time NTP Server Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.6%CVE-2024-45696HIGHD-Link WiFi router - Hidden FunctionalityEPSS 0.6%CVE-2023-35748HIGHD-Link DAP-2622 DDP Firmware Upgrade Server IPv6 Address Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.6%CVE-2025-34048HIGHD-Link DSL-2730U/2750U/2750E Path Traversal Arbitrary File ReadEPSS 0.6%CVE-2018-25358HIGHD-Link DIR601 2.02NA Credential Disclosure via my_cgi.cgiEPSS 0.6%

← anteriorpágina 37 / 39próxima →