Dlink Security Vulnerabilities (CVEs)
Track 613 security vulnerabilities affecting Dlink products and software. Get instant email alerts when new CVEs are discovered, automated security monitoring, and patch guidance.
This vulnerability in D-Link DIR-645 routers allows remote attackers to execute arbitrary code via a buffer overflow in the HNAP service. Attackers ca...
Mar 31, 2022This vulnerability allows unauthenticated remote attackers to execute arbitrary commands on D-Link DIR-820L routers via HTTP POST requests to the 'get...
Mar 28, 2022This vulnerability allows authenticated attackers to execute arbitrary system commands on D-Link DAP-1360 wireless access points by exploiting a comma...
Mar 27, 2022This vulnerability allows unauthenticated attackers to remotely reset D-Link DIR-816 A2 routers to factory defaults via a crafted HTTP request. Attack...
Mar 24, 2022This CVE describes a path traversal vulnerability in D-Link DAP-1620 devices that allows attackers to read sensitive system files like /etc/passwd and...
Mar 4, 2022This vulnerability allows unauthenticated attackers to remotely download configuration files from D-Link DIR850 routers. Attackers can access sensitiv...
Mar 4, 2022This CVE describes a remote command execution vulnerability in D-Link DIR-846 routers where attackers can inject shell commands through SSID parameter...
Feb 17, 2022A critical Remote Command Execution vulnerability exists in multiple D-Link router models via the DDNS function in the ncc2 binary. Attackers can exec...
Feb 17, 2022This vulnerability allows remote attackers to cause a denial-of-service (DoS) by tricking an authenticated user into visiting a specially crafted URL,...
Feb 9, 2022This CVE describes a command injection vulnerability in D-Link DIR-882 routers that allows attackers to execute arbitrary commands via crafted HNAP1 P...
Feb 4, 2022This CVE describes a command injection vulnerability in D-Link DI-7200GV2.E1 routers that allows attackers to execute arbitrary commands via specific ...
Feb 4, 2022This vulnerability allows remote attackers to execute arbitrary commands on D-Link DI-7200GV2.E1 routers via command injection in the usb_paswd.asp fu...
Feb 4, 2022This vulnerability in D-Link DI-7200GV2.E1 routers allows attackers to execute arbitrary operating system commands via the url_en parameter in the url...
Feb 4, 2022This vulnerability allows remote attackers to execute arbitrary commands on D-Link DI-7200GV2.E1 routers via command injection in the msp_info.htm fun...
Feb 4, 2022This vulnerability allows remote attackers to execute arbitrary commands on D-Link DIR-823-Pro routers via command injection in the SetStaticRouteSett...
Feb 4, 2022This vulnerability allows attackers to execute arbitrary commands on D-Link DIR-823-Pro routers via the station_access_enable parameter in the SetStat...
Feb 4, 2022This vulnerability allows remote attackers to execute arbitrary commands on D-Link DIR-823-Pro routers via command injection in the samba_name paramet...
Feb 4, 2022This vulnerability allows remote attackers to execute arbitrary commands on affected D-Link DIR-882 routers via a crafted HNAP1 POST request to the tw...
Feb 4, 2022This vulnerability allows authenticated remote attackers to perform absolute path traversal in Quagga services on D-Link DIR-2640 routers, enabling th...
Dec 30, 2021CVE-2021-33265 is a critical stack buffer overflow vulnerability in D-Link DIR-809 routers that allows remote attackers to execute arbitrary code or c...
Dec 1, 2021This vulnerability allows remote attackers to execute arbitrary code on D-Link DIR-809 routers via a stack buffer overflow in the formStaticDHCP funct...
Dec 1, 2021CVE-2021-33269 is a critical stack buffer overflow vulnerability in D-Link DIR-809 routers that allows remote attackers to execute arbitrary code via ...
Dec 1, 2021D-Link DIR-809 routers contain a critical stack buffer overflow vulnerability in their web interface that allows remote attackers to execute arbitrary...
Dec 1, 2021This vulnerability allows unauthenticated attackers to execute administrative actions on D-Link DWR-932C E1 routers by exploiting a missing authentica...
Nov 23, 2021This vulnerability in D-Link DIR-823G routers allows attackers to cause denial of service (DoS) by exploiting an unspecified issue in the firmware upl...
Nov 4, 2021This CVE describes a command injection vulnerability in the HNAP1 protocol of D-Link DIR-823G routers. Attackers can execute arbitrary commands via sh...
Nov 4, 2021This is a critical buffer overflow vulnerability in D-Link DAP-2020 routers that allows network-adjacent attackers to execute arbitrary code as root w...
Oct 25, 2021CVE-2021-34863 is a buffer overflow vulnerability in D-Link DAP-2020 routers that allows network-adjacent attackers to execute arbitrary code as root ...
Oct 25, 2021CVE-2021-21913 is a critical vulnerability in D-LINK DIR-3040 routers that allows unauthenticated attackers to execute arbitrary commands via the MQTT...
Sep 23, 2021This vulnerability allows remote attackers to execute arbitrary commands on D-Link DIR-816 routers through command injection in the web interface. Att...
Aug 24, 2021This vulnerability involves hard-coded credentials with weak passwords in D-Link DVG-3104MS devices, allowing attackers to gain unauthorized access. I...
Aug 23, 2021CVE-2021-39615 is a critical vulnerability in D-Link DSR-500N routers where hard-coded credentials for undocumented accounts exist in the /etc/passwd ...
Aug 23, 2021CVE-2021-3708 is an OS command injection vulnerability in D-Link DSL-2750U routers with firmware vME1.16 or earlier. Unauthenticated attackers on the ...
Aug 16, 2021A null pointer dereference vulnerability in D-Link DSL-2740R routers allows remote attackers to cause denial of service by sending crafted POST reques...
Aug 10, 2021A null pointer dereference vulnerability in D-Link DIR-825 routers allows remote attackers to cause denial of service by sending a specially crafted H...
Aug 10, 2021A null pointer dereference vulnerability in D-Link DAP series access points allows remote attackers to crash the httpd service by sending specially cr...
Aug 10, 2021A null pointer dereference vulnerability in D-Link DAP series access points allows remote attackers to crash the httpd service via a specially crafted...
Aug 10, 2021This vulnerability is a buffer overflow in D-Link DIR-615 C2 routers that allows attackers to crash the webserver and potentially execute arbitrary co...
Aug 6, 2021This vulnerability allows remote attackers to execute arbitrary commands on D-LINK DIR-3040 routers by sending specially crafted network requests to t...
Jul 16, 2021This vulnerability allows remote attackers to execute arbitrary code on D-LINK DIR-3040 routers due to a hard-coded password in the Libcli Test Enviro...
Jul 16, 2021This vulnerability in D-LINK DIR-3040 routers allows attackers to obtain sensitive information through specially crafted network requests to the Zebra...
Jul 16, 2021This is a buffer overflow vulnerability in D-Link DAP-1330 routers that allows network-adjacent attackers to execute arbitrary code without authentica...
Jul 15, 2021This is a stack-based buffer overflow vulnerability in D-Link DAP-1330 routers that allows network-adjacent attackers to execute arbitrary code withou...
Jul 15, 2021D-Link DIR-2640-US routers running firmware version 1.01B04 have an incorrect access control vulnerability in their PPPoE configuration. When PPPoE is...
Jun 16, 2021This vulnerability in D-Link DIR-2640 routers allows local attackers with ordinary user permissions to exploit out-of-bounds memory vulnerabilities to...
Jun 16, 2021CVE-2020-29322 is a vulnerability in D-Link DIR-880L routers where hardcoded credentials in the telnet service can be extracted through firmware decom...
Jun 4, 2021CVE-2020-29324 is a credentials disclosure vulnerability in D-Link DIR-895L MFC routers where hardcoded telnet credentials can be extracted through fi...
Jun 4, 2021This vulnerability in D-Link DAP-1880AC firmware allows remote authenticated attackers to bypass certificate chain of trust validation, potentially ga...
Apr 26, 2021CVE-2021-20697 is an authentication bypass vulnerability in D-Link DAP-1880AC access points. It allows remote attackers to gain administrative access ...
Apr 26, 2021This is a critical buffer overflow vulnerability in D-Link DAP-2020 access points that allows network-adjacent attackers to execute arbitrary code as ...
Apr 14, 2021Why Monitor Dlink Security Vulnerabilities?
Real-time CVE tracking: Our automated system monitors 613+ known vulnerabilities affecting Dlink products and software packages. Stay ahead of emerging threats with instant email notifications when new security issues are discovered.
Automated security monitoring: Unlike manual CVE checking, FixTheCVE automatically scans your servers and detects vulnerable Dlink packages in under 60 seconds. No agents required - completely agentless scanning that works across Dlink deployments.
Free vulnerability database: Access detailed information about every Dlink CVE including CVSS scores, severity ratings, affected versions, and actionable patch guidance. Filter by critical, high, medium, or low severity to prioritize your security remediation efforts.
🚀 Get Started in 60 Seconds
- Register free account & add your servers
- Run one-time scan or schedule automatic monitoring (every 1-24 hours)
- Receive instant alerts when new Dlink CVEs affect your systems
- Access dashboard with severity breakdown & fix instructions
