dlink security advisories

8 threat alerts tracking vulnerabilities and security advisories that affect dlink products.

Vulnios monitors dlink CVE feeds, vendor advisories, CISA KEV listings, and exploit-prediction data continuously. Each alert below is enriched with severity, exploitation status, affected products, and a remediation path. Use this page to scan recent dlink security news in one place, or click into an individual alert for full detail.

Critical Vulnerability: CVE-2017-11436 — dlink — dir-615
D-Link DIR-615 before v20.12PTb04 has a second admin account with a 0x1 BACKDOOR value, which might allow remote attackers to obtain access via a TELNET connection.
criticalCVE-2017-11436
Critical Vulnerability: CVE-2017-7405 — dlink — dir-615
On the D-Link DIR-615 before v20.12PTb04, once authenticated, this device identifies the user based on the IP address of his machine. By spoofing the IP address belonging to the victim's host, an atta
criticalCVE-2017-7405
Critical Vulnerability: CVE-2017-7406 — dlink — dir-615
The D-Link DIR-615 device before v20.12PTb04 doesn't use SSL for any of the authenticated pages. Also, it doesn't allow the user to generate his own SSL Certificate. An attacker can simply monitor net
criticalCVE-2017-7406
Critical Vulnerability: CVE-2016-1558 — dlink — dap-3662_firmware, dap-3662
Buffer overflow in D-Link DAP-2310 2.06 and earlier, DAP-2330 1.06 and earlier, DAP-2360 2.06 and earlier, DAP-2553 H/W ver. B1 3.05 and earlier, DAP-2660 1.11 and earlier, DAP-2690 3.15 and earlier,
criticalCVE-2016-1558
Critical Vulnerability: CVE-2017-6205 — dlink — websmart_dgs-1510_series_firmware, websmart_dgs-1510-20
D-Link DGS-1510-28XMP, DGS-1510-28X, DGS-1510-52X, DGS-1510-52, DGS-1510-28P, DGS-1510-28, and DGS-1510-20 Websmart devices with firmware before 1.31.B003 allow attackers to conduct Unauthenticated Co
criticalCVE-2017-6205
Critical Vulnerability: CVE-2016-10177 — dlink — dwr-932b_firmware, dwr-932b
An issue was discovered on the D-Link DWR-932B router. Undocumented TELNET and SSH services provide logins to admin with the password admin and root with the password 1234.
criticalCVE-2016-10177
Critical Vulnerability: CVE-2016-10182 — dlink — dwr-932b_firmware, dwr-932b
An issue was discovered on the D-Link DWR-932B router. qmiweb allows command injection with ` characters.
criticalCVE-2016-10182
Critical Vulnerability: CVE-2016-10178 — dlink — dwr-932b_firmware, dwr-932b
An issue was discovered on the D-Link DWR-932B router. HELODBG on port 39889 (UDP) launches the "/sbin/telnetd -l /bin/sh" command.
criticalCVE-2016-10178

Track dlink exposure across your environment

Vulnios automatically cross-references your asset inventory against new dlink CVEs and surfaces only what affects you. No more sifting manually — actionable findings only.

Start a free scan

dlink security advisories

Critical Vulnerability: CVE-2017-11436 — dlink — dir-615

Critical Vulnerability: CVE-2017-7405 — dlink — dir-615

Critical Vulnerability: CVE-2017-7406 — dlink — dir-615

Critical Vulnerability: CVE-2016-1558 — dlink — dap-3662_firmware, dap-3662

Critical Vulnerability: CVE-2017-6205 — dlink — websmart_dgs-1510_series_firmware, websmart_dgs-1510-20

Critical Vulnerability: CVE-2016-10177 — dlink — dwr-932b_firmware, dwr-932b

Critical Vulnerability: CVE-2016-10182 — dlink — dwr-932b_firmware, dwr-932b

Critical Vulnerability: CVE-2016-10178 — dlink — dwr-932b_firmware, dwr-932b

Track dlink exposure across your environment