D

Dlink Security Vulnerabilities (CVE)

Explore vulnerabilities and security advisories affecting Dlink products.

31 known CVE vulnerabilities tracked

Critical
4
High
15
Medium
11
Low
1
None
0

Vulnerabilities By Year

16
2025
15
2026

Products Affected

Di-8100 Firmware 8 Dir-816 Firmware 6 Dwr-M920 Firmware 5 Dns-320 Firmware 3 Dir-825M Firmware 2 Dsl-124 Firmware 1 Dcs-935L Firmware 1 Dcs-932L Firmware 1 Dir-300 Firmware 1 Dir-600 Firmware 1 Dir-605 Firmware 1 Dcs-850L Firmware 1

All Dlink CVEs

Recent Highest Score Oldest
CVE-2013-10050
8.8 high

An OS command injection vulnerability exists in multiple D-Link routers (confirmed on DIR-300 rev A v1.05 and DIR-615 rev D v4.13) via the authenticated tools_vct.xgi CGI endpoint. The web interface fails to properly sanitize user-supplied input in the pingIp parameter, allowing attackers with valid

Dir-300 Firmware Aug 1, 2025
CVE-2024-13107
5.3 medium

A vulnerability was found in D-Link DIR-816 A2 1.10CNB05_R1B011D88210. It has been classified as critical. This affects an unknown part of the file /goform/form2LocalAclEditcfg.cgi of the component ACL Handler. The manipulation leads to improper access controls. It is possible to initiate the attack

Dir-816 Firmware Jan 2, 2025
CVE-2024-13106
5.3 medium

A vulnerability was found in D-Link DIR-816 A2 1.10CNB05_R1B011D88210 and classified as critical. Affected by this issue is some unknown functionality of the file /goform/form2IPQoSTcAdd of the component IP QoS Handler. The manipulation leads to improper access controls. The attack may be launched r

Dir-816 Firmware Jan 2, 2025
CVE-2024-13105
5.3 medium

A vulnerability has been found in D-Link DIR-816 A2 1.10CNB05_R1B011D88210 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /goform/form2Dhcpd.cgi of the component DHCPD Setting Handler. The manipulation leads to improper access controls. The attack

Dir-816 Firmware Jan 2, 2025
CVE-2024-13104
5.3 medium

A vulnerability, which was classified as critical, was found in D-Link DIR-816 A2 1.10CNB05_R1B011D88210. Affected is an unknown function of the file /goform/form2AdvanceSetup.cgi of the component WiFi Settings Handler. The manipulation leads to improper access controls. It is possible to launch the

Dir-816 Firmware Jan 2, 2025
CVE-2024-13103
5.3 medium

A vulnerability, which was classified as critical, has been found in D-Link DIR-816 A2 1.10CNB05_R1B011D88210. This issue affects some unknown processing of the file /goform/form2AddVrtsrv.cgi of the component Virtual Service Handler. The manipulation leads to improper access controls. The attack ma

Dir-816 Firmware Jan 2, 2025
CVE-2024-13102
5.3 medium

A vulnerability classified as critical was found in D-Link DIR-816 A2 1.10CNB05_R1B011D88210. This vulnerability affects unknown code of the file /goform/DDNS of the component DDNS Service. The manipulation leads to improper access controls. The attack can be initiated remotely. The exploit has been

Dir-816 Firmware Jan 2, 2025