Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

D-Link — Vulnerabilities & Security Advisories 764

Browse all 764 CVE security advisories affecting D-Link. AI-powered Chinese analysis, POCs, and references for each vulnerability.

D-Link manufactures networking hardware, primarily consumer-grade routers and wireless access points, serving as a critical infrastructure component for home and small business internet connectivity. The company’s product line has historically been plagued by significant security deficiencies, resulting in 760 recorded Common Vulnerabilities and Exposures. These flaws frequently involve remote code execution, cross-site scripting, and privilege escalation, often stemming from hardcoded credentials or unpatched firmware updates. A notable incident occurred in 2017 when a critical vulnerability allowed attackers to gain administrative control over millions of devices, facilitating large-scale botnet recruitment. The persistent lack of timely security patches and weak default configurations have established a pattern of neglect, leaving users exposed to persistent threats. This track record highlights systemic issues in the development and maintenance lifecycle of D-Link’s network equipment, necessitating rigorous user-side security measures.

Top products by D-Link: DAP-2622 DNS-120 DAP-1325 DIR-605L DIR-823X DIR-X3260 DIR-619L DI-8100 G416 DWR-M960 DIR-619L B1 DIR-513 DIR-3040 DIR-2150 DIR-825 D-View DIR-1935 DAR-7000 DAP-1360 DIR-816 DI-7003GV2 DWR-M920 DIR-600L DIR-816 A2 DIR-2640 DNS-320 DIR-618 DSL6740C DAP-2020 DAP-2695
CVE IDTitleCVSSSeverityPublished
CVE-2026-2857 D-Link DWR-M960 Port Forwarding Configuration Endpoint formPortFw sub_423E00 stack-based overflow — DWR-M960CWE-121 8.8 High2026-02-20
CVE-2026-2856 D-Link DWR-M960 Filter Configuration Endpoint formFilter sub_424AFC stack-based overflow — DWR-M960CWE-121 8.8 High2026-02-20
CVE-2026-2855 D-Link DWR-M960 DDNS Settings formDdns sub_4648F0 stack-based overflow — DWR-M960CWE-121 8.8 High2026-02-20
CVE-2026-2854 D-Link DWR-M960 NTP Configuration Endpoint formNtp sub_4611CC stack-based overflow — DWR-M960CWE-121 8.8 High2026-02-20
CVE-2026-2853 D-Link DWR-M960 System Log Configuration Endpoint formSysLog sub_462E14 stack-based overflow — DWR-M960CWE-121 8.8 High2026-02-20
CVE-2026-2260 D-Link DCS-931L setSysAdmin os command injection — DCS-931LCWE-78 7.2 High2026-02-10
CVE-2026-2227 D-Link DCS-931L setSystemAdmin doSystem command injection — DCS-931LCWE-77 4.7 Medium2026-02-09
CVE-2026-2218 D-Link DCS-933L alphapd setSystemAdmin command injection — DCS-933LCWE-77 6.3 Medium2026-02-09
CVE-2026-2210 D-Link DIR-823X set_filtering sub_4211C8 os command injection — DIR-823XCWE-78 7.2 High2026-02-09
CVE-2026-2194 D-Link DI-7100G C1 start_proxy_client_email command injection — DI-7100G C1CWE-77 6.3 Medium2026-02-08
CVE-2026-2193 D-Link DI-7100G C1 set_jhttpd_info command injection — DI-7100G C1CWE-77 6.3 Medium2026-02-08
CVE-2026-2175 D-Link DIR-823X set_upnp sub_420618 os command injection — DIR-823XCWE-78 7.2 High2026-02-08
CVE-2026-2169 D-Link DWR-M921 formLtefotaUpgradeFibocom command injection — DWR-M921CWE-77 6.3 Medium2026-02-08
CVE-2026-2168 D-Link DWR-M921 formLtefotaUpgradeQuectel sub_419920 command injection — DWR-M921CWE-77 6.3 Medium2026-02-08
CVE-2026-2163 D-Link DIR-600 ssdp.cgi command injection — DIR-600CWE-77 4.7 Medium2026-02-08
CVE-2026-2157 D-Link DIR-823X set_static_route_table sub_4175CC os command injection — DIR-823XCWE-78 7.2 High2026-02-08
CVE-2026-2155 D-Link DIR-823X Configuration set_dmz sub_4208A0 os command injection — DIR-823XCWE-78 7.2 High2026-02-08
CVE-2026-2152 D-Link DIR-615 Web Configuration adv_routing.php os command injection — DIR-615CWE-78 7.2 High2026-02-08
CVE-2026-2151 D-Link DIR-615 DMZ Host Feature adv_firewall.php os command injection — DIR-615CWE-78 7.2 High2026-02-08
CVE-2026-2143 D-Link DIR-823X DDNS Service set_ddns os command injection — DIR-823XCWE-78 7.2 High2026-02-08
CVE-2026-2142 D-Link DIR-823X set_qos sub_420688 os command injection — DIR-823XCWE-78 7.2 High2026-02-08
CVE-2026-2129 D-Link DIR-823X set_ac_status os command injection — DIR-823XCWE-78 7.2 High2026-02-08
CVE-2026-2120 D-Link DIR-823X Configuration Parameter set_server_settings os command injection — DIR-823XCWE-78 7.2 High2026-02-08
CVE-2026-2085 D-Link DWR-M921 USSD Configuration Endpoint formUSSDSetup sub_419F20 command injection — DWR-M921CWE-77 7.2 High2026-02-07
CVE-2026-2084 D-Link DIR-823X set_language os command injection — DIR-823XCWE-78 7.2 High2026-02-07
CVE-2026-2082 D-Link DIR-823X set_mac_clone os command injection — DIR-823XCWE-78 4.7 Medium2026-02-07
CVE-2026-2081 D-Link DIR-823X set_password os command injection — DIR-823XCWE-78 4.7 Medium2026-02-07
CVE-2026-2063 D-Link DIR-823X Web Management set_ac_server os command injection — DIR-823XCWE-78 4.7 Medium2026-02-06
CVE-2026-2061 D-Link DIR-823X set_ipv6 sub_424D20 os command injection — DIR-823XCWE-78 4.7 Medium2026-02-06
CVE-2026-2056 D-Link DIR-605L/DIR-619L DHCP Connection Status wan_connection_status.asp information disclosure — DIR-605LCWE-200 5.3 Medium2026-02-06

This page lists every published CVE security advisory associated with D-Link. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.