dlink

1,708 tracked vulnerabilities.

CVE-2025-55848 HIGH
D-Link DIR-823X Firmware 20250416 - http_casswd Command Injection
Sep 26, 2025
CVSS 8.8
EPSS 0.00
CVE-2025-57636 MEDIUM
D-Link DI-7100G Firmware - OS Command Injection via HTTP Parameter
Sep 23, 2025
CVSS 6.5
EPSS 0.01
CVE-2025-57637 HIGH
D-Link DI-7100G 2020-02-21 - Heap-based Buffer Overflow via jhttpd viav4 Parameter
Sep 23, 2025
CVSS 7.5
EPSS 0.01
CVE-2025-10814 MEDIUM
D-Link DIR-823X 240126/240802/250416 - OS Command Injection via Goahead Port Argument
Sep 22, 2025
CVSS 6.3
EPSS 0.06
CVE-2025-10792 HIGH
D-Link DIR-513 A1FW110 - Buffer Overflow via formWPS webpage Argument
Sep 22, 2025
CVSS 8.8
EPSS 0.03
CVE-2025-10779 HIGH
D-Link DCS-935L < 1.13.01 - Stack-Based Buffer Overflow via HNAP_AUTH/SOAPAction Argument
Sep 22, 2025
CVSS 8.8
EPSS 0.01
CVE-2025-10689 MEDIUM
D-Link DIR-645 105B01 - OS Command Injection via soapcgi_main Service Argument
Sep 18, 2025
CVSS 6.3
EPSS 0.05
CVE-2025-10666 HIGH
D-Link DIR-825 Firmware < 2.10 - Buffer Overflow via apply.cgi countdown_time Argument
Sep 18, 2025
CVSS 8.8
EPSS 0.03
CVE-2025-10634 MEDIUM
D-Link DIR-823X 240126/240802/250416 - OS Command Injection via Environment Variable Handler
Sep 18, 2025
CVSS 6.3
EPSS 0.07
CVE-2025-10629 MEDIUM
D-Link DIR-852 1.00CN B09 - Remote Command Injection via SSDP ST Argument
Sep 18, 2025
CVSS 6.3
EPSS 0.05
CVE-2025-10628 MEDIUM
D-Link DIR-852 1.00CN B09 - OS Command Injection via Web Management Interface
Sep 18, 2025
CVSS 6.3
EPSS 0.09
CVE-2025-10401 MEDIUM
D-Link DIR-823x Firmware < 250416 - OS Command Injection via diag_ping target_addr Parameter
Sep 14, 2025
CVSS 6.3
EPSS 0.08
CVE-2025-10123 HIGH
D-Link DIR-823X < 250416 - Unauthenticated Command Injection via Hostname Parameter
Sep 09, 2025
CVSS 7.3
EPSS 0.04
CVE-2025-10093 MEDIUM
D-Link DIR-852 up to 1.00CN B09 - Information Disclosure via getcfg.php Device Configuration Handler
Sep 08, 2025
CVSS 5.3
EPSS 0.01
CVE-2025-10034 HIGH
D-Link DIR-825 1.08.01 - Buffer Overflow in ping6_response.cg via ping6_ipaddr
Sep 06, 2025
CVSS 8.8
EPSS 0.01
CVE-2025-9938 HIGH
D-Link DI-8400 16.07.26A1 - Stack-Based Buffer Overflow via yyxz.asp ID Parameter
Sep 04, 2025
CVSS 8.8
EPSS 0.01
CVE-2025-9769 MEDIUM
D-Link DI-7400G+ 19.12.25A1 - OS Command Injection via mng_platform.asp addr Parameter
Sep 01, 2025
CVSS 4.1
EPSS 0.26
CVE-2025-9752 HIGH
D-Link DIR-852 1.00CN B09 - OS Command Injection via SOAP Service soapcgi_main Function
Sep 01, 2025
CVSS 7.3
EPSS 0.16
CVE-2025-9745 MEDIUM
D-Link DI-500WF 14.04.10A1T - Code Injection
Aug 31, 2025
CVSS 4.7
EPSS 0.10
CVE-2025-9727 MEDIUM
D-Link DIR-816L 206b01 - Command Injection
Aug 31, 2025
CVSS 6.3
EPSS 0.05
CVE-2025-55583 CRITICAL
D-Link DIR-868L B1 - Command Injection
Aug 28, 2025
CVSS 9.8
EPSS 0.06
CVE-2025-55582 MEDIUM
D-Link DCS-825L <1.08.01 - Privilege Escalation
Aug 27, 2025
CVSS 6.6
EPSS 0.00
CVE-2025-29523 HIGH
D-Link DSL-7740C Firmware DSL7740C.V6.TR069.20211230 - OS Command Injection via Ping6 Function
Aug 25, 2025
CVSS 7.2
EPSS 0.02
CVE-2025-51281 HIGH
D-Link DI-8100 16.07.26A1 - Buffer Overflow
Aug 25, 2025
CVSS 7.0
EPSS 0.00
CVE-2025-29522 MEDIUM
D-Link DSL-7740C Firmware DSL7740C.V6.TR069.20211230 - OS Command Injection via Ping Function
Aug 25, 2025
CVSS 6.5
EPSS 0.01