dlink
1,708 tracked vulnerabilities.
CVE-2020-25757
HIGH
D-Link DSR VPN Routers < 3.17 - Unauthenticated OS Command Injection via Lua CGI
Dec 15, 2020
CVSS 8.8
EPSS 0.02
CVE-2020-26567
MEDIUM
D-Link DSR-250N < 3.17b - Unauthenticated Denial of Service via upgradeStatusReboot.cgi
Oct 08, 2020
CVSS 5.5
EPSS 0.17
CVE-2020-26582
HIGH
D-Link DAP-1360U <3.0.1 - Command Injection
Oct 06, 2020
CVSS 8.8
EPSS 0.05
CVE-2020-25786
MEDIUM
D-Link DIR-803 and DIR-816L Firmware - Cross-Site Scripting via HTTP Referer Header
Sep 19, 2020
CVSS 6.1
EPSS 0.01
CVE-2020-25079
HIGH
KEV
D-Link DCS-2530L < 1.06.01 and DCS-2670L <= 2.02 - Authenticated Command Injection via ddns_enc.cgi
Sep 02, 2020
CVSS 8.8
EPSS 0.53
CVE-2020-25078
HIGH
KEVNUCLEI
D-Link DCS-2530L <1.06.01 - Info Disclosure
Sep 02, 2020
CVSS 7.5
EPSS 0.98
CVE-2020-15632
HIGH
D-Link DIR-842 3.13B05 - Auth Bypass
Jul 23, 2020
CVSS 8.8
EPSS 0.03
CVE-2020-15631
HIGH
D-Link DAP-1860 Firmware < 1.04b01 - Authenticated OS Command Injection via HNAP SOAPAction Header
Jul 23, 2020
CVSS 8.0
EPSS 0.03
CVE-2020-15896
HIGH
D-Link DAP-1522 Firmware < 1.10b04Beta02 - Unauthenticated Authentication Bypass via NO_NEED_AUTH Parameter
Jul 22, 2020
CVSS 7.5
EPSS 0.02
CVE-2020-15895
MEDIUM
NUCLEI
D-Link DIR-816L Firmware 2.x - Stored Cross-Site Scripting via RESULT Parameter
Jul 22, 2020
CVSS 6.1
EPSS 0.03
CVE-2020-15894
HIGH
D-Link DIR-816L Firmware 2.x - Unauthenticated Sensitive Information Exposure via getcfg.php DEVICE.ACCOUNT
Jul 22, 2020
CVSS 7.5
EPSS 0.02
CVE-2020-15893
CRITICAL
D-Link DIR-816L Firmware 2.x - OS Command Injection via UPnP SSDP M-SEARCH ST Field
Jul 22, 2020
CVSS 9.8
EPSS 0.21
CVE-2020-15892
CRITICAL
D-Link DAP-1520 Firmware < 1.10b04 - Stack-Based Buffer Overflow via Login Request Parameters
Jul 22, 2020
CVSS 9.8
EPSS 0.02
CVE-2020-12774
HIGH
D-Link DSL-7740C - Command Injection
Jul 22, 2020
CVSS 8.2
EPSS 0.00
CVE-2020-9377
HIGH
KEV
D-Link DIR-610 Firmware - Remote Command Execution via cmd Parameter
Jul 09, 2020
CVSS 8.8
EPSS 0.21
CVE-2020-9376
HIGH
NUCLEI
D-Link DIR-610 Firmware - Information Disclosure via getcfg.php
Jul 09, 2020
CVSS 7.5
EPSS 0.17
CVE-2020-13150
HIGH
D-link DSL-2750U ISL2750UEME3.V1E - Info Disclosure
Jun 15, 2020
CVSS 7.8
EPSS 0.00
CVE-2020-13960
HIGH
D-Link DSL-2730U and DIR-600M Firmware - DNS Hijacking via Default Search Path
Jun 08, 2020
CVSS 7.5
EPSS 0.01
CVE-2020-12695
HIGH
Open Connectivity Foundation UPnP <2020-04-17 - SSRF
Jun 08, 2020
CVSS 7.5
EPSS 0.15
CVE-2020-13787
HIGH
D-Link DIR-865L Firmware 1.20B01 Beta - Cleartext Transmission of Sensitive Information
Jun 03, 2020
CVSS 7.5
EPSS 0.01
CVE-2020-13786
HIGH
D-Link DIR-865L Firmware 1.20B01 Beta - Cross-Site Request Forgery
Jun 03, 2020
CVSS 8.8
EPSS 0.01
CVE-2020-13785
HIGH
D-Link DIR-865L Ax 1.20B01 Beta - Inadequate Encryption Strength
Jun 03, 2020
CVSS 7.5
EPSS 0.01
CVE-2020-13784
HIGH
D-Link DIR-865L Ax <1.20B01 - Info Disclosure
Jun 03, 2020
CVSS 7.5
EPSS 0.01
CVE-2020-13783
HIGH
D-Link DIR-865L Firmware 1.20B01 Beta - Cleartext Storage of Sensitive Information
Jun 03, 2020
CVSS 7.5
EPSS 0.01
CVE-2020-13782
HIGH
D-Link DIR-865L Ax 1.20B01 Beta - OS Command Injection
Jun 03, 2020
CVSS 8.8
EPSS 0.27
Products
dir-816_firmware 73
dir-605l_firmware 65
dir-619l_firmware 65
dir-823g_firmware 59
dap-2622_firmware 54
dns-320_firmware 52
dir-513_firmware 47
dns-320lw_firmware 45
dns-325_firmware 45
dns-340l_firmware 45
dns-343_firmware 43
dnr-202l_firmware 42
dnr-326_firmware 42
dns-1100-4_firmware 42
dns-1200-05_firmware 42
dns-120_firmware 42
dns-1550-04_firmware 42
dns-315l_firmware 42
dns-320l_firmware 42
dns-321_firmware 42
dns-323_firmware 42
dns-326_firmware 42
dns-327l_firmware 42
dns-345_firmware 42
dns-726-4_firmware 42
dir-823x_firmware 39
dir-878_firmware 39
dap-1325_firmware 37
dir-600l_firmware 36
di-8003_firmware 35
Quick Filters