Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1336 CNY

100%

D-link — Vulnerabilities & Security Advisories 779

Browse all 779 CVE security advisories affecting D-link. AI-powered Chinese analysis, POCs, and references for each vulnerability.

D-Link manufactures networking hardware, primarily consumer-grade routers and wireless access points, serving as a critical infrastructure component for home and small business internet connectivity. The company’s product line has historically been plagued by significant security deficiencies, resulting in 760 recorded Common Vulnerabilities and Exposures. These flaws frequently involve remote code execution, cross-site scripting, and privilege escalation, often stemming from hardcoded credentials or unpatched firmware updates. A notable incident occurred in 2017 when a critical vulnerability allowed attackers to gain administrative control over millions of devices, facilitating large-scale botnet recruitment. The persistent lack of timely security patches and weak default configurations have established a pattern of neglect, leaving users exposed to persistent threats. This track record highlights systemic issues in the development and maintenance lifecycle of D-Link’s network equipment, necessitating rigorous user-side security measures.

CVE IDTitleCVSSSeverityPublished
CVE-2023-32167 D-Link D-View uploadMib Directory Traversal Arbitrary File Creation or Deletion Vulnerability — D-ViewCWE-22 8.1 -2024-05-03
CVE-2023-32166 D-Link D-View uploadFile Directory Traversal Arbitrary File Creation Vulnerability — D-ViewCWE-22 8.1 -2024-05-03
CVE-2023-32165 D-Link D-View TftpReceiveFileHandler Directory Traversal Remote Code Execution Vulnerability — D-ViewCWE-22 9.8 -2024-05-03
CVE-2023-32164 D-Link D-View TftpSendFileThread Directory Traversal Information Disclosure Vulnerability — D-ViewCWE-22 7.5 -2024-05-03
CVE-2023-32153 D-Link DIR-2640 EmailFrom Command Injection Remote Code Execution Vulnerability — DIR-2640CWE-78 8.0 -2024-05-03
CVE-2023-32152 D-Link DIR-2640 HNAP LoginPassword Authentication Bypass Vulnerability — DIR-2640CWE-303 8.8 -2024-05-03
CVE-2023-32151 D-Link DIR-2640 DestNetwork Command Injection Remote Code Execution Vulnerability — DIR-2640CWE-78 8.0 -2024-05-03
CVE-2023-32150 D-Link DIR-2640 PrefixLen Command Injection Remote Code Execution Vulnerability — DIR-2640CWE-78 8.0 -2024-05-03
CVE-2023-32149 D-Link DIR-2640 prog.cgi Request Handling Stack-based Buffer Overflow Remote Code Execution Vulnerability — DIR-2640CWE-121 8.8 -2024-05-03
CVE-2023-32148 D-Link DIR-2640 HNAP PrivateLogin Authentication Bypass Vulnerability — DIR-2640CWE-303 8.8 -2024-05-03
CVE-2023-32146 D-Link DAP-1360 Multiple Parameters Stack-Based Buffer Overflow Remote Code Execution Vulnerability — DAP-1360CWE-121 8.8 -2024-05-03
CVE-2023-32147 D-Link DIR-2640 LocalIPAddress Command Injection Remote Code Execution Vulnerability — DIR-2640CWE-78 8.0 -2024-05-03
CVE-2023-32145 D-Link DAP-1360 Hardcoded Credentials Authentication Bypass Vulnerability — DAP-1360CWE-259 8.8 -2024-05-03
CVE-2023-32144 D-Link DAP-1360 webproc COMM_MakeCustomMsg Stack-based Buffer Overflow Remote Code Execution Vulnerability — DAP-1360CWE-121 8.8 -2024-05-03
CVE-2023-32143 D-Link DAP-1360 webupg UPGCGI_CheckAuth Numeric Truncation Remote Code Execution Vulnerability — DAP-1360CWE-197 8.8 -2024-05-03
CVE-2023-32142 D-Link DAP-1360 webproc var:page Stack-based Buffer Overflow Remote Code Execution Vulnerability — DAP-1360CWE-121 8.8 -2024-05-03
CVE-2023-32141 D-Link DAP-1360 webproc WEB_DisplayPage Stack-based Buffer Overflow Remote Code Execution Vulnerability — DAP-1360CWE-121 8.8 -2024-05-03
CVE-2023-32140 D-Link DAP-1360 webproc var:sys_Token Heap-based Buffer Overflow Remote Code Execution Vulnerability — DAP-1360CWE-122 8.8 -2024-05-03
CVE-2023-32139 D-Link DAP-1360 webproc Stack-based Buffer Overflow Remote Code Execution Vulnerability — DAP-1360CWE-121 8.8 -2024-05-03
CVE-2023-32138 D-Link DAP-1360 webproc Heap-based Buffer Overflow Remote Code Execution Vulnerability — DAP-1360CWE-122 8.8 -2024-05-03
CVE-2023-32137 D-Link DAP-1360 webproc WEB_DisplayPage Directory Traversal Information Disclosure Vulnerability — DAP-1360CWE-22 6.5 -2024-05-03
CVE-2023-32136 D-Link DAP-1360 webproc var:menu Stack-based Buffer Overflow Remote Code Execution Vulnerability — DAP-1360CWE-121 8.8 -2024-05-03
CVE-2023-41222 D-Link DIR-3040 prog.cgi SetWan2Settings Stack-Based Buffer Overflow Remote Code Execution Vulnerability — DIR-3040CWE-121 8.0 -2024-05-03
CVE-2023-51631 D-Link DIR-X3260 prog.cgi SetUsersSettings Stack-based Buffer Overflow Remote Code Execution Vulnerability — DIR-X3260CWE-121 8.0 -2024-05-01
CVE-2024-3274 D-Link DNS-320L/DNS-320LW/DNS-327L HTTP GET Request info.cgi information disclosure — DNS-320LCWE-200 5.3 Medium2024-04-04
CVE-2024-3273 D-Link DNS-320L/DNS-325/DNS-327L/DNS-340L HTTP GET Request nas_sharing.cgi command injection — DNS-320LCWE-77 7.3 High2024-04-04
CVE-2024-3272 D-Link DNS-320L/DNS-325/DNS-327L/DNS-340L HTTP GET Request nas_sharing.cgi hard-coded credentials — DNS-320LCWE-798 9.8 Critical2024-04-04
CVE-2024-1786 D-Link DIR-600M C1 Telnet Service buffer overflow — DIR-600M C1CWE-120 7.5 High2024-02-23
CVE-2024-0921 D-Link DIR-816 A2 Web Interface setDeviceSettings os command injection — DIR-816 A2CWE-78 4.7 Medium2024-01-26
CVE-2024-23625 D-Link DAP-1650 SUBSCRIBE Callback Command Injection Vulnerability — DAP-1650CWE-77 9.6 Critical2024-01-25

This page lists every published CVE security advisory associated with D-link. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.