← Back

Dlink

dlink

1,706 CVEs • 918 products

Products (918)

Click to collapse
Toggle
Dir 816 Firmware
dir-816_firmware
73 CVEs
Dir 605l Firmware
dir-605l_firmware
65 CVEs
Dir 619l Firmware
dir-619l_firmware
65 CVEs
Dir 823g Firmware
dir-823g_firmware
58 CVEs
Dap 2622 Firmware
dap-2622_firmware
54 CVEs
Dns 320 Firmware
dns-320_firmware
52 CVEs
Dir 513 Firmware
dir-513_firmware
47 CVEs
Dns 320lw Firmware
dns-320lw_firmware
45 CVEs
Dns 325 Firmware
dns-325_firmware
45 CVEs
Dns 340l Firmware
dns-340l_firmware
45 CVEs
Dns 343 Firmware
dns-343_firmware
43 CVEs
Dns 320l Firmware
dns-320l_firmware
42 CVEs
Dns 120 Firmware
dns-120_firmware
42 CVEs
Dnr 202l Firmware
dnr-202l_firmware
42 CVEs
Dns 315l Firmware
dns-315l_firmware
42 CVEs
Dns 321 Firmware
dns-321_firmware
42 CVEs
Dns 323 Firmware
dns-323_firmware
42 CVEs
Dns 326 Firmware
dns-326_firmware
42 CVEs
Dns 327l Firmware
dns-327l_firmware
42 CVEs
Dnr 326 Firmware
dnr-326_firmware
42 CVEs
Dns 345 Firmware
dns-345_firmware
42 CVEs
Dns 726 4 Firmware
dns-726-4_firmware
42 CVEs
Dns 1100 4 Firmware
dns-1100-4_firmware
42 CVEs
Dns 1200 05 Firmware
dns-1200-05_firmware
42 CVEs
Dns 1550 04 Firmware
dns-1550-04_firmware
42 CVEs
Dir 878 Firmware
dir-878_firmware
41 CVEs
Dir 823x Firmware
dir-823x_firmware
39 CVEs
Dap 1325 Firmware
dap-1325_firmware
37 CVEs
Dir 600l Firmware
dir-600l_firmware
36 CVEs
Di 8003 Firmware
di-8003_firmware
35 CVEs
Dir 882 Firmware
dir-882_firmware
31 CVEs
Dir 850l Firmware
dir-850l_firmware
27 CVEs
Di 8100 Firmware
di-8100_firmware
27 CVEs
Dir 3040 Firmware
dir-3040_firmware
25 CVEs
Dar 7000 Firmware
dar-7000_firmware
23 CVEs
Dir X3260 Firmware
dir-x3260_firmware
23 CVEs
Dwr M960 Firmware
dwr-m960_firmware
22 CVEs
Dns 322l Firmware
dns-322l_firmware
22 CVEs
Dnr 322l Firmware
dnr-322l_firmware
21 CVEs
Di 7003g Firmware
di-7003g_firmware
21 CVEs
G416 Firmware
g416_firmware
21 CVEs
Dir 868l Firmware
dir-868l_firmware
20 CVEs
Dir 825 Firmware
dir-825_firmware
19 CVEs
Dir 615 Firmware
dir-615_firmware
19 CVEs
D View 8
d-view_8
19 CVEs
Dcs 1130 Firmware
dcs-1130_firmware
18 CVEs
Dap 2020 Firmware
dap-2020_firmware
18 CVEs
Dsl 3782 Firmware
dsl-3782_firmware
17 CVEs
Dir 2150 Firmware
dir-2150_firmware
17 CVEs
Dap 1360 Firmware
dap-1360_firmware
16 CVEs
Dir 822 Firmware
dir-822_firmware
16 CVEs
Dir 865l Firmware
dir-865l_firmware
16 CVEs
Dwr M920 Firmware
dwr-m920_firmware
16 CVEs
Dir 816l Firmware
dir-816l_firmware
15 CVEs
Dir 820l Firmware
dir-820l_firmware
15 CVEs
Dir 815 Firmware
dir-815_firmware
15 CVEs
Go Rt Ac750 Firmware
go-rt-ac750_firmware
15 CVEs
Dir 1935 Firmware
dir-1935_firmware
15 CVEs
Di 7200g Firmware
di-7200g_firmware
15 CVEs
Dcs 932l Firmware
dcs-932l_firmware
14 CVEs
Dir 816 A2 Firmware
dir-816_a2_firmware
13 CVEs
Dir 846 Firmware
dir-846_firmware
13 CVEs
Di 7300g+ Firmware
di-7300g+_firmware
13 CVEs
Dir 645 Firmware
dir-645_firmware
12 CVEs
Dcs 1100 Firmware
dcs-1100_firmware
12 CVEs
Di 7400g+ Firmware
di-7400g+_firmware
12 CVEs
Dsr 250n Firmware
dsr-250n_firmware
11 CVEs
Dap 2695 Firmware
dap-2695_firmware
11 CVEs
Central Wifimanager
central_wifimanager
11 CVEs
Di 7100g+ Firmware
di-7100g+_firmware
11 CVEs
Dir 600 Firmware
dir-600_firmware
10 CVEs
Dwr 932b Firmware
dwr-932b_firmware
10 CVEs
Dir 860l Firmware
dir-860l_firmware
10 CVEs
Dir 890l Firmware
dir-890l_firmware
10 CVEs
Dsl 7740c Firmware
dsl-7740c_firmware
10 CVEs
Dir 882 A1 Firmware
dir-882_a1_firmware
10 CVEs
Dsr 250 Firmware
dsr-250_firmware
9 CVEs
Dsr 1000n Firmware
dsr-1000n_firmware
9 CVEs
Dir 809 Firmware
dir-809_firmware
9 CVEs
Dir 880l Firmware
dir-880l_firmware
9 CVEs
Dir 2640 Firmware
dir-2640_firmware
9 CVEs
Dir 845l Firmware
dir-845l_firmware
9 CVEs
Dsr 500 Firmware
dsr-500_firmware
8 CVEs
Dsr 150n Firmware
dsr-150n_firmware
8 CVEs
Dsr 150 Firmware
dsr-150_firmware
8 CVEs
Dsr 500n Firmware
dsr-500n_firmware
8 CVEs
Dir 818l(w) Firmware
dir-818l(w)_firmware
8 CVEs
Dir 300 Firmware
dir-300_firmware
8 CVEs
Dir 859 Firmware
dir-859_firmware
8 CVEs
Di 7200gv2 Firmware
di-7200gv2_firmware
8 CVEs
Dir 823 Pro Firmware
dir-823_pro_firmware
8 CVEs
Dir 619 Firmware
dir-619_firmware
8 CVEs
Dar 8000 Firmware
dar-8000_firmware
8 CVEs
Dir 853 Firmware
dir-853_firmware
8 CVEs
Dir 618 Firmware
dir-618_firmware
8 CVEs
Dcs 2121 Firmware
dcs-2121_firmware
7 CVEs
Dsr 1000 Firmware
dsr-1000_firmware
7 CVEs
Dap 2660 Firmware
dap-2660_firmware
7 CVEs
Dsl 2750u Firmware
dsl-2750u_firmware
7 CVEs
6600 Ap Firmware
6600-ap_firmware
7 CVEs

CVEs (1,706)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2024-44382
1Dlink
1Di 8004w Firmware
Jun 17, 2026
Aug 23, 2024
N/A· v4
9.8 CRITICAL· v3
N/A· v2
D-Link DI_8004W 16.07.26A1 contains a command execution vulnerability in the jhttpd upgrade_filter_asp function.
CVE-2024-44381
1Dlink
1Di 8004w Firmware
Jun 17, 2026
Aug 23, 2024
N/A· v4
9.8 CRITICAL· v3
N/A· v2
D-Link DI_8004W 16.07.26A1 contains a command execution vulnerability in jhttpd msp_info_htm function.
CVE-2024-42812
1Dlink
1Dir 860l Firmware
Jun 17, 2026
Aug 19, 2024
N/A· v4
9.8 CRITICAL· v3
N/A· v2
In D-Link DIR-860L v2.03, there is a buffer overflow vulnerability due to the lack of length verification for the SID field in gena.cgi. Attackers who successfully exploit this vulnerability can cause the remote target d...Show more
In D-Link DIR-860L v2.03, there is a buffer overflow vulnerability due to the lack of length verification for the SID field in gena.cgi. Attackers who successfully exploit this vulnerability can cause the remote target device to crash or execute arbitrary commands.Show less
CVE-2024-7833
1Dlink
1Di 8100 Firmware
Jun 17, 2026
Aug 15, 2024
5.3 MEDIUM· v4
9.8 CRITICAL· v3
6.5 MEDIUM· v2
A vulnerability was found in D-Link DI-8100 16.07. It has been classified as critical. This affects the function upgrade_filter_asp of the file upgrade_filter.asp. The manipulation of the argument path leads to command i...Show more
A vulnerability was found in D-Link DI-8100 16.07. It has been classified as critical. This affects the function upgrade_filter_asp of the file upgrade_filter.asp. The manipulation of the argument path leads to command injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.Show less
CVE-2024-7832
1Dlink
20Dnr 202l Firmware
Dnr 322l FirmwareDnr 326 Firmware+17 more
Jun 17, 2026
Aug 15, 2024
8.7 HIGH· v4
8.8 HIGH· v3
9.0 HIGH· v2
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345,...Show more
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20240814 and classified as critical. Affected by this issue is the function cgi_get_fullscreen_photos of the file /cgi-bin/photocenter_mgr.cgi. The manipulation of the argument user leads to buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. NOTE: This vulnerability only affects products that are no longer supported by the maintainer. NOTE: Vendor was contacted early and confirmed that the product is end-of-life. It should be retired and replaced.Show less
CVE-2024-7831
1Dlink
20Dnr 202l Firmware
Dnr 322l FirmwareDnr 326 Firmware+17 more
Jun 17, 2026
Aug 15, 2024
8.7 HIGH· v4
9.8 CRITICAL· v3
9.0 HIGH· v2
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-...Show more
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20240814 and classified as critical. Affected by this vulnerability is the function cgi_get_cooliris of the file /cgi-bin/photocenter_mgr.cgi. The manipulation of the argument path leads to buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. NOTE: This vulnerability only affects products that are no longer supported by the maintainer. NOTE: Vendor was contacted early and confirmed that the product is end-of-life. It should be retired and replaced.Show less
CVE-2024-7830
1Dlink
20Dnr 202l Firmware
Dnr 322l FirmwareDnr 326 Firmware+17 more
Jun 17, 2026
Aug 15, 2024
8.7 HIGH· v4
9.8 CRITICAL· v3
9.0 HIGH· v2
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability, which was classified as critical, was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DN...Show more
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability, which was classified as critical, was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20240814. Affected is the function cgi_move_photo of the file /cgi-bin/photocenter_mgr.cgi. The manipulation of the argument photo_name leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. NOTE: This vulnerability only affects products that are no longer supported by the maintainer. NOTE: Vendor was contacted early and confirmed that the product is end-of-life. It should be retired and replaced.Show less
CVE-2024-7829
1Dlink
20Dnr 202l Firmware
Dnr 322l FirmwareDnr 326 Firmware+17 more
Jun 17, 2026
Aug 15, 2024
8.7 HIGH· v4
9.8 CRITICAL· v3
9.0 HIGH· v2
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability, which was classified as critical, has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327...Show more
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability, which was classified as critical, has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20240814. This issue affects the function cgi_del_photo of the file /cgi-bin/photocenter_mgr.cgi. The manipulation of the argument current_path leads to buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. NOTE: This vulnerability only affects products that are no longer supported by the maintainer. NOTE: Vendor was contacted early and confirmed that the product is end-of-life. It should be retired and replaced.Show less
CVE-2024-7828
1Dlink
20Dnr 202l Firmware
Dnr 322l FirmwareDnr 326 Firmware+17 more
Jun 17, 2026
Aug 15, 2024
8.7 HIGH· v4
9.8 CRITICAL· v3
9.0 HIGH· v2
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability classified as critical was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-3...Show more
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability classified as critical was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20240814. This vulnerability affects the function cgi_set_cover of the file /cgi-bin/photocenter_mgr.cgi. The manipulation of the argument album_name leads to buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. NOTE: This vulnerability only affects products that are no longer supported by the maintainer. NOTE: Vendor was contacted early and confirmed that the product is end-of-life. It should be retired and replaced.Show less
CVE-2024-41616
1Dlink
1Dir 300 Firmware
Jun 17, 2026
Aug 6, 2024
N/A· v4
9.8 CRITICAL· v3
N/A· v2
D-Link DIR-300 REVA FIRMWARE v1.06B05_WW contains hardcoded credentials in the Telnet service.
CVE-2024-7436
1Dlink
1Di 8100 Firmware
Jun 17, 2026
Aug 3, 2024
5.3 MEDIUM· v4
8.8 HIGH· v3
6.5 MEDIUM· v2
A vulnerability, which was classified as critical, has been found in D-Link DI-8100 16.07. This issue affects the function msp_info_htm of the file msp_info.htm. The manipulation of the argument cmd leads to command inje...Show more
A vulnerability, which was classified as critical, has been found in D-Link DI-8100 16.07. This issue affects the function msp_info_htm of the file msp_info.htm. The manipulation of the argument cmd leads to command injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-273521 was assigned to this vulnerability.Show less
CVE-2024-7357
1Dlink
1Dir 600 Firmware
Jun 17, 2026
Aug 1, 2024
5.3 MEDIUM· v4
9.8 CRITICAL· v3
6.5 MEDIUM· v2
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in D-Link DIR-600 up to 2.18. It has been rated as critical. This issue affects the function soapcgi_main of the file /soap.cgi. The manipulation of the argument...Show more
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in D-Link DIR-600 up to 2.18. It has been rated as critical. This issue affects the function soapcgi_main of the file /soap.cgi. The manipulation of the argument service leads to os command injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-273329 was assigned to this vulnerability. NOTE: This vulnerability only affects products that are no longer supported by the maintainer. NOTE: Vendor was contacted early and confirmed immediately that the product is end-of-life. It should be retired and replaced.Show less
CVE-2024-41611
1Dlink
1Dir 860l Firmware
Jun 17, 2026
Jul 30, 2024
N/A· v4
9.8 CRITICAL· v3
N/A· v2
In D-Link DIR-860L REVA FIRMWARE PATCH 1.10..B04, the Telnet service contains hardcoded credentials, enabling attackers to log in remotely to the Telnet service and perform arbitrary commands.
CVE-2024-41610
1Dlink
1Dir 820lw Firmware
Jun 17, 2026
Jul 30, 2024
N/A· v4
9.8 CRITICAL· v3
N/A· v2
D-Link DIR-820LW REVB FIRMWARE PATCH 2.03.B01_TC contains hardcoded credentials in the Telnet service, enabling attackers to log in remotely to the Telnet service and perform arbitrary commands.
CVE-2024-38438
1Dlink
1Dsl 225 Firmware
Jun 17, 2026
Jul 21, 2024
N/A· v4
9.8 CRITICAL· v3
N/A· v2
D-Link - CWE-294: Authentication Bypass by Capture-replay
CVE-2024-38437
1Dlink
1Dsl 225 Firmware
Jun 17, 2026
Jul 21, 2024
N/A· v4
9.8 CRITICAL· v3
N/A· v2
D-Link - CWE-288:Authentication Bypass Using an Alternate Path or Channel
CVE-2024-39962
1Dlink
1Dir 823x Firmware
Jun 17, 2026
Jul 19, 2024
N/A· v4
9.8 CRITICAL· v3
N/A· v2
D-Link DIR-823X AX3000 Dual-Band Gigabit Wireless Router v21_D240126 was discovered to contain a remote code execution (RCE) vulnerability in the ntp_zone_val parameter at /goform/set_ntp. This vulnerability is exploited...Show more
D-Link DIR-823X AX3000 Dual-Band Gigabit Wireless Router v21_D240126 was discovered to contain a remote code execution (RCE) vulnerability in the ntp_zone_val parameter at /goform/set_ntp. This vulnerability is exploited via a crafted HTTP request.Show less
CVE-2024-40505
1Dlink
1Dap 1650 Firmware
Jun 17, 2026
Jul 16, 2024
N/A· v4
9.3 CRITICAL· v3
N/A· v2
Directory Traversal vulnerability in D-Link DAP-1650 Firmware v.1.03 allows a local attacker to escalate privileges via the hedwig.cgi component.
CVE-2024-39202
1Dlink
1Dir 823x Ax3000 Firmware
Jun 17, 2026
Jul 8, 2024
N/A· v4
8.8 HIGH· v3
N/A· v2
D-Link DIR-823X firmware - 240126 was discovered to contain a remote command execution (RCE) vulnerability via the dhcpd_startip parameter at /goform/set_lan_settings.
CVE-2024-6525
1Dlink
1Dar 7000 Firmware
Jun 17, 2026
Jul 5, 2024
5.1 MEDIUM· v4
8.8 HIGH· v3
3.3 LOW· v2
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in D-Link DAR-7000 up to 20230922. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /log/decodmail.php. The mani...Show more
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in D-Link DAR-7000 up to 20230922. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /log/decodmail.php. The manipulation of the argument file leads to deserialization. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-270368. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.Show less