← Back

Dlink

dlink

1,706 CVEs • 918 products

Products (918)

Click to collapse
Toggle
Dir 816 Firmware
dir-816_firmware
73 CVEs
Dir 605l Firmware
dir-605l_firmware
65 CVEs
Dir 619l Firmware
dir-619l_firmware
65 CVEs
Dir 823g Firmware
dir-823g_firmware
58 CVEs
Dap 2622 Firmware
dap-2622_firmware
54 CVEs
Dns 320 Firmware
dns-320_firmware
52 CVEs
Dir 513 Firmware
dir-513_firmware
47 CVEs
Dns 320lw Firmware
dns-320lw_firmware
45 CVEs
Dns 325 Firmware
dns-325_firmware
45 CVEs
Dns 340l Firmware
dns-340l_firmware
45 CVEs
Dns 343 Firmware
dns-343_firmware
43 CVEs
Dns 320l Firmware
dns-320l_firmware
42 CVEs
Dns 120 Firmware
dns-120_firmware
42 CVEs
Dnr 202l Firmware
dnr-202l_firmware
42 CVEs
Dns 315l Firmware
dns-315l_firmware
42 CVEs
Dns 321 Firmware
dns-321_firmware
42 CVEs
Dns 323 Firmware
dns-323_firmware
42 CVEs
Dns 326 Firmware
dns-326_firmware
42 CVEs
Dns 327l Firmware
dns-327l_firmware
42 CVEs
Dnr 326 Firmware
dnr-326_firmware
42 CVEs
Dns 345 Firmware
dns-345_firmware
42 CVEs
Dns 726 4 Firmware
dns-726-4_firmware
42 CVEs
Dns 1100 4 Firmware
dns-1100-4_firmware
42 CVEs
Dns 1200 05 Firmware
dns-1200-05_firmware
42 CVEs
Dns 1550 04 Firmware
dns-1550-04_firmware
42 CVEs
Dir 878 Firmware
dir-878_firmware
41 CVEs
Dir 823x Firmware
dir-823x_firmware
39 CVEs
Dap 1325 Firmware
dap-1325_firmware
37 CVEs
Dir 600l Firmware
dir-600l_firmware
36 CVEs
Di 8003 Firmware
di-8003_firmware
35 CVEs
Dir 882 Firmware
dir-882_firmware
31 CVEs
Dir 850l Firmware
dir-850l_firmware
27 CVEs
Di 8100 Firmware
di-8100_firmware
27 CVEs
Dir 3040 Firmware
dir-3040_firmware
25 CVEs
Dar 7000 Firmware
dar-7000_firmware
23 CVEs
Dir X3260 Firmware
dir-x3260_firmware
23 CVEs
Dwr M960 Firmware
dwr-m960_firmware
22 CVEs
Dns 322l Firmware
dns-322l_firmware
22 CVEs
Dnr 322l Firmware
dnr-322l_firmware
21 CVEs
Di 7003g Firmware
di-7003g_firmware
21 CVEs
G416 Firmware
g416_firmware
21 CVEs
Dir 868l Firmware
dir-868l_firmware
20 CVEs
Dir 825 Firmware
dir-825_firmware
19 CVEs
Dir 615 Firmware
dir-615_firmware
19 CVEs
D View 8
d-view_8
19 CVEs
Dcs 1130 Firmware
dcs-1130_firmware
18 CVEs
Dap 2020 Firmware
dap-2020_firmware
18 CVEs
Dsl 3782 Firmware
dsl-3782_firmware
17 CVEs
Dir 2150 Firmware
dir-2150_firmware
17 CVEs
Dap 1360 Firmware
dap-1360_firmware
16 CVEs
Dir 822 Firmware
dir-822_firmware
16 CVEs
Dir 865l Firmware
dir-865l_firmware
16 CVEs
Dwr M920 Firmware
dwr-m920_firmware
16 CVEs
Dir 816l Firmware
dir-816l_firmware
15 CVEs
Dir 820l Firmware
dir-820l_firmware
15 CVEs
Dir 815 Firmware
dir-815_firmware
15 CVEs
Go Rt Ac750 Firmware
go-rt-ac750_firmware
15 CVEs
Dir 1935 Firmware
dir-1935_firmware
15 CVEs
Di 7200g Firmware
di-7200g_firmware
15 CVEs
Dcs 932l Firmware
dcs-932l_firmware
14 CVEs
Dir 816 A2 Firmware
dir-816_a2_firmware
13 CVEs
Dir 846 Firmware
dir-846_firmware
13 CVEs
Di 7300g+ Firmware
di-7300g+_firmware
13 CVEs
Dir 645 Firmware
dir-645_firmware
12 CVEs
Dcs 1100 Firmware
dcs-1100_firmware
12 CVEs
Di 7400g+ Firmware
di-7400g+_firmware
12 CVEs
Dsr 250n Firmware
dsr-250n_firmware
11 CVEs
Dap 2695 Firmware
dap-2695_firmware
11 CVEs
Central Wifimanager
central_wifimanager
11 CVEs
Di 7100g+ Firmware
di-7100g+_firmware
11 CVEs
Dir 600 Firmware
dir-600_firmware
10 CVEs
Dwr 932b Firmware
dwr-932b_firmware
10 CVEs
Dir 860l Firmware
dir-860l_firmware
10 CVEs
Dir 890l Firmware
dir-890l_firmware
10 CVEs
Dsl 7740c Firmware
dsl-7740c_firmware
10 CVEs
Dir 882 A1 Firmware
dir-882_a1_firmware
10 CVEs
Dsr 250 Firmware
dsr-250_firmware
9 CVEs
Dsr 1000n Firmware
dsr-1000n_firmware
9 CVEs
Dir 809 Firmware
dir-809_firmware
9 CVEs
Dir 880l Firmware
dir-880l_firmware
9 CVEs
Dir 2640 Firmware
dir-2640_firmware
9 CVEs
Dir 845l Firmware
dir-845l_firmware
9 CVEs
Dsr 500 Firmware
dsr-500_firmware
8 CVEs
Dsr 150n Firmware
dsr-150n_firmware
8 CVEs
Dsr 150 Firmware
dsr-150_firmware
8 CVEs
Dsr 500n Firmware
dsr-500n_firmware
8 CVEs
Dir 818l(w) Firmware
dir-818l(w)_firmware
8 CVEs
Dir 300 Firmware
dir-300_firmware
8 CVEs
Dir 859 Firmware
dir-859_firmware
8 CVEs
Di 7200gv2 Firmware
di-7200gv2_firmware
8 CVEs
Dir 823 Pro Firmware
dir-823_pro_firmware
8 CVEs
Dir 619 Firmware
dir-619_firmware
8 CVEs
Dar 8000 Firmware
dar-8000_firmware
8 CVEs
Dir 853 Firmware
dir-853_firmware
8 CVEs
Dir 618 Firmware
dir-618_firmware
8 CVEs
Dcs 2121 Firmware
dcs-2121_firmware
7 CVEs
Dsr 1000 Firmware
dsr-1000_firmware
7 CVEs
Dap 2660 Firmware
dap-2660_firmware
7 CVEs
Dsl 2750u Firmware
dsl-2750u_firmware
7 CVEs
6600 Ap Firmware
6600-ap_firmware
7 CVEs

CVEs (1,706)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2025-4346
1Dlink
1Dir 600l Firmware
Jun 17, 2026
May 6, 2025
8.7 HIGH· v4
9.8 CRITICAL· v3
9.0 HIGH· v2
A vulnerability was found in D-Link DIR-600L up to 2.07B01. It has been classified as critical. Affected is the function formSetWAN_Wizard534. The manipulation of the argument host leads to buffer overflow. It is possibl...Show more
A vulnerability was found in D-Link DIR-600L up to 2.07B01. It has been classified as critical. Affected is the function formSetWAN_Wizard534. The manipulation of the argument host leads to buffer overflow. It is possible to launch the attack remotely. This vulnerability only affects products that are no longer supported by the maintainer.Show less
CVE-2025-4345
1Dlink
1Dir 600l Firmware
Jun 17, 2026
May 6, 2025
8.7 HIGH· v4
9.8 CRITICAL· v3
9.0 HIGH· v2
A vulnerability was found in D-Link DIR-600L up to 2.07B01 and classified as critical. This issue affects the function formSetLog. The manipulation of the argument host leads to buffer overflow. The attack may be initiat...Show more
A vulnerability was found in D-Link DIR-600L up to 2.07B01 and classified as critical. This issue affects the function formSetLog. The manipulation of the argument host leads to buffer overflow. The attack may be initiated remotely. This vulnerability only affects products that are no longer supported by the maintainer.Show less
CVE-2025-4344
1Dlink
1Dir 600l Firmware
Jun 17, 2026
May 6, 2025
8.7 HIGH· v4
9.8 CRITICAL· v3
9.0 HIGH· v2
A vulnerability, which was classified as critical, was found in D-Link DIR-600L up to 2.07B01. This affects the function formLogin. The manipulation of the argument host leads to buffer overflow. It is possible to initia...Show more
A vulnerability, which was classified as critical, was found in D-Link DIR-600L up to 2.07B01. This affects the function formLogin. The manipulation of the argument host leads to buffer overflow. It is possible to initiate the attack remotely. This vulnerability only affects products that are no longer supported by the maintainer.Show less
CVE-2025-4343
1Dlink
1Dir 600l Firmware
Jun 17, 2026
May 6, 2025
8.7 HIGH· v4
9.8 CRITICAL· v3
9.0 HIGH· v2
A vulnerability has been found in D-Link DIR-600L up to 2.07B01 and classified as critical. This vulnerability affects the function formEasySetupWizard. The manipulation of the argument host leads to buffer overflow. The...Show more
A vulnerability has been found in D-Link DIR-600L up to 2.07B01 and classified as critical. This vulnerability affects the function formEasySetupWizard. The manipulation of the argument host leads to buffer overflow. The attack can be initiated remotely. This vulnerability only affects products that are no longer supported by the maintainer.Show less
CVE-2025-4342
1Dlink
1Dir 600l Firmware
Jun 17, 2026
May 6, 2025
8.7 HIGH· v4
9.8 CRITICAL· v3
9.0 HIGH· v2
A vulnerability, which was classified as critical, has been found in D-Link DIR-600L up to 2.07B01. Affected by this issue is the function formEasySetupWizard3. The manipulation of the argument host leads to buffer overf...Show more
A vulnerability, which was classified as critical, has been found in D-Link DIR-600L up to 2.07B01. Affected by this issue is the function formEasySetupWizard3. The manipulation of the argument host leads to buffer overflow. The attack may be launched remotely. This vulnerability only affects products that are no longer supported by the maintainer.Show less
CVE-2025-4341
1Dlink
1Dir 880l Firmware
Jun 17, 2026
May 6, 2025
5.3 MEDIUM· v4
9.8 CRITICAL· v3
6.5 MEDIUM· v2
A vulnerability classified as critical was found in D-Link DIR-880L up to 104WWb01. Affected by this vulnerability is the function sub_16570 of the file /htdocs/ssdpcgi of the component Request Header Handler. The manipu...Show more
A vulnerability classified as critical was found in D-Link DIR-880L up to 104WWb01. Affected by this vulnerability is the function sub_16570 of the file /htdocs/ssdpcgi of the component Request Header Handler. The manipulation of the argument HTTP_ST/REMOTE_ADDR/REMOTE_PORT/SERVER_ID leads to command injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. This vulnerability only affects products that are no longer supported by the maintainer.Show less
CVE-2025-4340
1Dlink
2Dir 806 Firmware
Dir 890l Firmware
Jun 17, 2026
May 6, 2025
5.3 MEDIUM· v4
9.8 CRITICAL· v3
6.5 MEDIUM· v2
A vulnerability classified as critical has been found in D-Link DIR-890L and DIR-806A1 up to 100CNb11/108B03. Affected is the function sub_175C8 of the file /htdocs/soap.cgi. The manipulation leads to command injection....Show more
A vulnerability classified as critical has been found in D-Link DIR-890L and DIR-806A1 up to 100CNb11/108B03. Affected is the function sub_175C8 of the file /htdocs/soap.cgi. The manipulation leads to command injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. This vulnerability only affects products that are no longer supported by the maintainer.Show less
CVE-2025-44835
1Dlink
1Dir 816 A2 Firmware
Jun 17, 2026
May 1, 2025
N/A· v4
6.3 MEDIUM· v3
N/A· v2
D-Link DIR-816 A2V1.1.0B05 was found to contain a command injection in iptablesWebsFilterRun, which allows remote attackers to execute arbitrary commands via shell.
CVE-2025-29743
1Dlink
1Dir 816 Firmware
Jun 17, 2026
Apr 22, 2025
N/A· v4
6.5 MEDIUM· v3
N/A· v2
D-Link DIR-816 A2V1.1.0B05 was found to contain a command injection in /goform/delRouting.
CVE-2025-3785
1Dlink
1Dwr M961 Firmware
Jun 17, 2026
Apr 18, 2025
8.7 HIGH· v4
8.8 HIGH· v3
9.0 HIGH· v2
A vulnerability has been found in D-Link DWR-M961 1.1.36 and classified as critical. This vulnerability affects unknown code of the file /boafrm/formStaticDHCP of the component Authorization Interface. The manipulation o...Show more
A vulnerability has been found in D-Link DWR-M961 1.1.36 and classified as critical. This vulnerability affects unknown code of the file /boafrm/formStaticDHCP of the component Authorization Interface. The manipulation of the argument Hostname leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. Upgrading to version 1.1.49 is able to address this issue. It is recommended to upgrade the affected component.Show less
CVE-2025-29039
1Dlink
1Dir 823x Firmware
Jun 17, 2026
Apr 17, 2025
N/A· v4
7.2 HIGH· v3
N/A· v2
An issue in dlink DIR 832x 240802 allows a remote attacker to execute arbitrary code via the function 0x41dda8
CVE-2025-29043
1Dlink
1Dir 823x Firmware
Jun 17, 2026
Apr 17, 2025
N/A· v4
9.8 CRITICAL· v3
N/A· v2
An issue in dlink DIR 832x 240802 allows a remote attacker to execute arbitrary code via the function 0x417234
CVE-2025-29042
1Dlink
1Dir 823x Firmware
Jun 17, 2026
Apr 17, 2025
N/A· v4
9.8 CRITICAL· v3
N/A· v2
An issue in dlink DIR 832x 240802 allows a remote attacker to execute arbitrary code via the macaddr key value to the function 0x42232c
CVE-2025-29041
1Dlink
1Dir 823x Firmware
Jun 17, 2026
Apr 17, 2025
N/A· v4
9.8 CRITICAL· v3
N/A· v2
An issue in dlink DIR 823x 240802 allows a remote attacker to execute arbitrary code via the target_addr key value and the function 0x41710c
CVE-2025-29040
1Dlink
1Dir 823x Firmware
Jun 17, 2026
Apr 17, 2025
N/A· v4
9.8 CRITICAL· v3
N/A· v2
An issue in dlink DIR 823x 240802 allows a remote attacker to execute arbitrary code via the target_addr key value and the function 0x41737c
CVE-2025-3538
1Dlink
1Di 8100 Firmware
Jun 17, 2026
Apr 13, 2025
8.7 HIGH· v4
8.8 HIGH· v3
8.3 HIGH· v2
A vulnerability was found in D-Link DI-8100 16.07.26A1. It has been rated as critical. This issue affects the function auth_asp of the file /auth.asp of the component jhttpd. The manipulation of the argument callback lea...Show more
A vulnerability was found in D-Link DI-8100 16.07.26A1. It has been rated as critical. This issue affects the function auth_asp of the file /auth.asp of the component jhttpd. The manipulation of the argument callback leads to stack-based buffer overflow. The attack needs to be approached within the local network. The exploit has been disclosed to the public and may be used.Show less
CVE-2025-28398
1Dlink
1Di 8100 Firmware
Jun 17, 2026
Apr 1, 2025
N/A· v4
7.1 HIGH· v3
N/A· v2
D-LINK DI-8100 16.07.26A1 is vulnerable to Buffer Overflow in the ipsec_net_asp function via the remot_ip parameter.
CVE-2025-28395
1Dlink
1Di 8100 Firmware
Jun 17, 2026
Apr 1, 2025
N/A· v4
7.1 HIGH· v3
N/A· v2
D-LINK DI-8100 16.07.26A1 is vulnerable to Buffer Overflow in the ipsec_road_asp function via the host_ip parameter.
CVE-2025-29635
1Dlink
1Dir 823x Firmware
Jun 17, 2026
Mar 25, 2025
N/A· v4
7.2 HIGH· v3
N/A· v2
A command injection vulnerability in D-Link DIR-823X 240126 and 240802 allows an authorized attacker to execute arbitrary commands on remote devices by sending a POST request to /goform/set_prohibiting via the correspond...Show more
A command injection vulnerability in D-Link DIR-823X 240126 and 240802 allows an authorized attacker to execute arbitrary commands on remote devices by sending a POST request to /goform/set_prohibiting via the corresponding function, triggering remote command execution.Show less
CVE-2025-2717
1Dlink
1Dir 823x Firmware
Jun 17, 2026
Mar 25, 2025
5.1 MEDIUM· v4
7.2 HIGH· v3
5.8 MEDIUM· v2
A vulnerability, which was classified as critical, has been found in D-Link DIR-823X 240126/240802. This issue affects the function sub_41710C of the file /goform/diag_nslookup of the component HTTP POST Request Handler....Show more
A vulnerability, which was classified as critical, has been found in D-Link DIR-823X 240126/240802. This issue affects the function sub_41710C of the file /goform/diag_nslookup of the component HTTP POST Request Handler. The manipulation of the argument target_addr leads to os command injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.Show less