Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

D-Link — Vulnerabilities & Security Advisories 764

Browse all 764 CVE security advisories affecting D-Link. AI-powered Chinese analysis, POCs, and references for each vulnerability.

D-Link manufactures networking hardware, primarily consumer-grade routers and wireless access points, serving as a critical infrastructure component for home and small business internet connectivity. The company’s product line has historically been plagued by significant security deficiencies, resulting in 760 recorded Common Vulnerabilities and Exposures. These flaws frequently involve remote code execution, cross-site scripting, and privilege escalation, often stemming from hardcoded credentials or unpatched firmware updates. A notable incident occurred in 2017 when a critical vulnerability allowed attackers to gain administrative control over millions of devices, facilitating large-scale botnet recruitment. The persistent lack of timely security patches and weak default configurations have established a pattern of neglect, leaving users exposed to persistent threats. This track record highlights systemic issues in the development and maintenance lifecycle of D-Link’s network equipment, necessitating rigorous user-side security measures.

Top products by D-Link: DAP-2622 DNS-120 DAP-1325 DIR-605L DIR-823X DIR-X3260 DIR-619L DI-8100 G416 DWR-M960 DIR-619L B1 DIR-513 DIR-3040 DIR-2150 DIR-825 D-View DIR-1935 DAR-7000 DAP-1360 DIR-816 DI-7003GV2 DWR-M920 DIR-600L DIR-816 A2 DIR-2640 DNS-320 DIR-618 DSL6740C DAP-2020 DAP-2695
CVE IDTitleCVSSSeverityPublished
CVE-2025-6334 D-Link DIR-867 Query String strncpy stack-based overflow — DIR-867CWE-121 8.8 High2025-06-20
CVE-2025-6328 D-Link DIR-815 hedwig.cgi sub_403794 stack-based overflow — DIR-815CWE-121 8.8 High2025-06-20
CVE-2025-6292 D-Link DIR-825 HTTP POST Request sub_4091AC stack-based overflow — DIR-825CWE-121 8.8 High2025-06-20
CVE-2025-6291 D-Link DIR-825 HTTP POST Request do_file stack-based overflow — DIR-825CWE-121 8.8 High2025-06-20
CVE-2025-6158 D-Link DIR-665 HTTP POST Request sub_AC78 stack-based overflow — DIR-665CWE-121 8.8 High2025-06-17
CVE-2025-6121 D-Link DIR-632 HTTP POST Request get_pure_content stack-based overflow — DIR-632CWE-121 9.8 Critical2025-06-16
CVE-2025-6115 D-Link DIR-619L form_macfilter stack-based overflow — DIR-619LCWE-121 8.8 High2025-06-16
CVE-2025-6114 D-Link DIR-619L form_portforwarding stack-based overflow — DIR-619LCWE-121 8.8 High2025-06-16
CVE-2025-5969 D-Link DIR-632 HTTP POST Request biurl_grou FUN_00425fd8 stack-based overflow — DIR-632CWE-121 8.8 High2025-06-10
CVE-2025-5912 D-Link DIR-632 HTTP POST Request do_file stack-based overflow — DIR-632CWE-121 8.8 High2025-06-10
CVE-2025-5630 D-Link DIR-816 form2lansetup.cgi stack-based overflow — DIR-816CWE-121 9.8 Critical2025-06-05
CVE-2025-5624 D-Link DIR-816 QoSPortSetup stack-based overflow — DIR-816CWE-121 9.8 Critical2025-06-05
CVE-2025-5623 D-Link DIR-816 qosClassifier stack-based overflow — DIR-816CWE-121 9.8 Critical2025-06-05
CVE-2025-5622 D-Link DIR-816 wirelessApcli_5g stack-based overflow — DIR-816CWE-121 9.8 Critical2025-06-05
CVE-2025-5621 D-Link DIR-816 qosClassifier os command injection — DIR-816CWE-78 7.3 High2025-06-04
CVE-2025-5620 D-Link DIR-816 setipsec_config os command injection — DIR-816CWE-78 7.3 High2025-06-04
CVE-2025-5573 D-Link DCS-932L setSystemWizard setSystemControl os command injection — DCS-932LCWE-78 6.3 Medium2025-06-04
CVE-2025-5572 D-Link DCS-932L setSystemEmail stack-based overflow — DCS-932LCWE-121 8.8 High2025-06-04
CVE-2025-5571 D-Link DCS-932L setSystemAdmin os command injection — DCS-932LCWE-78 6.3 Medium2025-06-04
CVE-2025-5492 D-Link DI-500WF-WT /usr/sbin/jhttpd msp_info.htm sub_456DE8 command injection — DI-500WF-WTCWE-77 6.3 Medium2025-06-03
CVE-2025-5228 D-Link DI-8100 jhttpd login.cgi httpd_get_parm stack-based overflow — DI-8100CWE-121 8.8 High2025-05-27
CVE-2025-5215 D-Link DCS-5020L ptdc.cgi websReadEvent stack-based overflow — DCS-5020LCWE-121 8.8 High2025-05-27
CVE-2025-4904 D-Link DI-7003GV2 webgl.data sub_41F0FC information disclosure — DI-7003GV2CWE-200 5.3 Medium2025-05-19
CVE-2025-4903 D-Link DI-7003GV2 webgl.asp sub_41F4F0 unverified password change — DI-7003GV2CWE-620 5.3 Medium2025-05-19
CVE-2025-4902 D-Link DI-7003GV2 versionupdate.data sub_48F4F0 information disclosure — DI-7003GV2CWE-200 5.3 Medium2025-05-19
CVE-2025-4901 D-Link DI-7003GV2 HTTP Endpoint state_view.data sub_41E304 information disclosure — DI-7003GV2CWE-200 4.3 Medium2025-05-18
CVE-2025-4883 D-Link DI-8100 Connection Limit Page ctxz.asp ctxz_asp stack-based overflow — DI-8100CWE-121 7.2 High2025-05-18
CVE-2025-4860 D-Link DAP-2695 Static Pool Settings Page adv_dhcps.php cross site scripting — DAP-2695CWE-79 2.4 Low2025-05-18
CVE-2025-4859 D-Link DAP-2695 MAC Bypass Settings Page adv_macbypass.php cross site scripting — DAP-2695CWE-79 2.4 Low2025-05-18
CVE-2025-4858 D-Link DAP-2695 ARP Spoofing Prevention Page adv_arpspoofing.php cross site scripting — DAP-2695CWE-79 2.4 Low2025-05-18

This page lists every published CVE security advisory associated with D-Link. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.