CVE Tracker

CVE ID	Severity	EPSS	Vendor	Description	Date	Status
CVE-2025-29635	High	—	D-LinkDIR-823X	D-Link DIR-823X contains a command injection vulnerability that allows an authorized attacker to execute arbitrary commands on remote devices by sending a POST request to /goform/set_prohibiting via the corresponding function. The impacted product could be end-of-life (EoL) and/or end-of-service (EoS). Users should discontinue product utilization.	Apr 24, 2026	KEV
CVE-2022-37055	High	69.8%	D-LinkRouters	D-Link Routers contains a buffer overflow vulnerability that has a high impact on confidentiality, integrity, and availability. The impacted products could be end-of-life (EoL) and/or end-of-service (EoS). Users should discontinue product utilization.	Dec 8, 2025	KEV
CVE-2020-25079	High	48.3%	D-LinkDCS-2530L and DCS-2670L Devices	D-Link DCS-2530L and DCS-2670L devices contains a command injection vulnerability in the cgi-bin/ddns_enc.cgi. The impacted products could be end-of-life (EoL) and/or end-of-service (EoS). Users should discontinue product utilization.	Aug 5, 2025	KEV
CVE-2022-40799	High	37.1%	D-LinkDNR-322L	D-Link DNR-322L contains a download of code without integrity check vulnerability that could allow an authenticated attacker to execute OS level commands on the device. The impacted products could be end-of-life (EoL) and/or end-of-service (EoS). Users should discontinue product utilization.	Aug 5, 2025	KEV
CVE-2020-25078	High	94.1%	D-LinkDCS-2530L and DCS-2670L Devices	D-Link DCS-2530L and DCS-2670L devices contains an unspecified vulnerability that could allow for remote administrator password disclosure. The impacted products could be end-of-life (EoL) and/or end-of-service (EoS). Users should discontinue product utilization.	Aug 5, 2025	KEV
CVE-2024-0769	High	75.2%	D-LinkDIR-859 Router	D-Link DIR-859 routers contain a path traversal vulnerability in the file /hedwig.cgi of the component HTTP POST Request Handler. Manipulation of the argument service with the input ../../../../htdocs/webinc/getcfg/DHCPS6.BRIDGE-1.xml allows for the leakage of session data potentially enabling privilege escalation and unauthorized control of the device. This vulnerability affects legacy D-Link products. All associated hardware revisions have reached their end-of-life (EOL) or end-of-service (EOS) life cycle and should be retired and replaced per vendor instructions.	Jun 25, 2025	KEV
CVE-2023-25280	High	92.8%	D-LinkDIR-820 Router	D-Link DIR-820 routers contain an OS command injection vulnerability that allows a remote, unauthenticated attacker to escalate privileges to root via a crafted payload with the ping_addr parameter to ping.ccp.	Sep 30, 2024	KEV
CVE-2021-40655	High	92.6%	D-LinkDIR-605 Router	D-Link DIR-605 routers contain an information disclosure vulnerability that allows attackers to obtain a username and password by forging a post request to the /getcfg.php page.	May 16, 2024	KEV
CVE-2014-100005	High	40.8%	D-LinkDIR-600 Router	D-Link DIR-600 routers contain a cross-site request forgery (CSRF) vulnerability that allows an attacker to change router configurations by hijacking an existing administrator session.	May 16, 2024	KEV
CVE-2024-3272	High	94.2%	D-LinkMultiple NAS Devices	D-Link DNS-320L, DNS-325, DNS-327L, and DNS-340L contains a hard-coded credential that allows an attacker to conduct authenticated command injection, leading to remote, unauthorized code execution.	Apr 11, 2024	KEV
CVE-2024-3273	High	94.4%	D-LinkMultiple NAS Devices	D-Link DNS-320L, DNS-325, DNS-327L, and DNS-340L contain a command injection vulnerability. When combined with CVE-2024-3272, this can lead to remote, unauthorized code execution.	Apr 11, 2024	KEV
CVE-2016-20017	High	93.4%	D-LinkDSL-2750B Devices	D-Link DSL-2750B devices contain a command injection vulnerability that allows remote, unauthenticated command injection via the login.cgi cli parameter.	Jan 8, 2024	KEV
CVE-2019-20500	High	92.2%	D-LinkDWL-2600AP Access Point	D-Link DWL-2600AP access point contains an authenticated command injection vulnerability via the Save Configuration functionality in the Web interface, using shell metacharacters in the admin.cgi?action=config_save configBackup or downloadServerip parameter.	Jun 29, 2023	KEV
CVE-2019-17621	High	93.0%	D-LinkDIR-859 Router	D-Link DIR-859 router contains a command execution vulnerability in the UPnP endpoint URL, /gena.cgi. Exploitation allows an unauthenticated remote attacker to execute system commands as root by sending a specially crafted HTTP SUBSCRIBE request to the UPnP service when connecting to the local network.	Jun 29, 2023	KEV
CVE-2018-6530	High	94.3%	D-LinkMultiple Routers	Multiple D-Link routers contain an unspecified vulnerability that allows for execution of OS commands.	Sep 8, 2022	KEV
CVE-2022-26258	High	87.6%	D-LinkDIR-820L	D-Link DIR-820L contains an unspecified vulnerability in Device Name parameter in /lan.asp which allows for remote code execution.	Sep 8, 2022	KEV
CVE-2011-4723	High	12.7%	D-LinkDIR-300 Router	The D-Link DIR-300 router stores cleartext passwords, which allows context-dependent attackers to obtain sensitive information.	Sep 8, 2022	KEV
CVE-2019-16057	High	93.7%	D-LinkDNS-320 Storage Device	The login_mgr.cgi script in D-Link DNS-320 is vulnerable to remote code execution.	Apr 15, 2022	KEV
CVE-2021-45382	High	94.2%	D-LinkMultiple Routers	A remote code execution vulnerability exists in all series H/W revisions routers via the DDNS function in ncc2 binary file.	Apr 4, 2022	KEV
CVE-2016-11021	High	91.3%	D-LinkDCS-930L Devices	setSystemCommand on D-Link DCS-930L devices allows a remote attacker to execute code via an OS command.	Mar 25, 2022	KEV

CVE-2025-29635KEV

High

D-Link DIR-823X contains a command injection vulnerability that allows an authorized attacker to execute arbitrary commands on remote devices by sending a POST request to /goform/set_prohibiting via the corresponding function. The impacted product could be end-of-life (EoL) and/or end-of-service (EoS). Users should discontinue product utilization.

D-Link

CVE-2022-37055KEV

High

D-Link Routers contains a buffer overflow vulnerability that has a high impact on confidentiality, integrity, and availability. The impacted products could be end-of-life (EoL) and/or end-of-service (EoS). Users should discontinue product utilization.

D-LinkEPSS 69.8%

CVE-2020-25079KEV

High

D-Link DCS-2530L and DCS-2670L devices contains a command injection vulnerability in the cgi-bin/ddns_enc.cgi. The impacted products could be end-of-life (EoL) and/or end-of-service (EoS). Users should discontinue product utilization.

D-LinkEPSS 48.3%

CVE-2022-40799KEV

High

D-Link DNR-322L contains a download of code without integrity check vulnerability that could allow an authenticated attacker to execute OS level commands on the device. The impacted products could be end-of-life (EoL) and/or end-of-service (EoS). Users should discontinue product utilization.

D-LinkEPSS 37.1%

CVE-2020-25078KEV

High

D-Link DCS-2530L and DCS-2670L devices contains an unspecified vulnerability that could allow for remote administrator password disclosure. The impacted products could be end-of-life (EoL) and/or end-of-service (EoS). Users should discontinue product utilization.

D-LinkEPSS 94.1%

CVE-2024-0769KEV

High

D-Link DIR-859 routers contain a path traversal vulnerability in the file /hedwig.cgi of the component HTTP POST Request Handler. Manipulation of the argument service with the input ../../../../htdocs/webinc/getcfg/DHCPS6.BRIDGE-1.xml allows for the leakage of session data potentially enabling privilege escalation and unauthorized control of the device. This vulnerability affects legacy D-Link products. All associated hardware revisions have reached their end-of-life (EOL) or end-of-service (EOS) life cycle and should be retired and replaced per vendor instructions.

D-LinkEPSS 75.2%

CVE-2023-25280KEV

High

D-Link DIR-820 routers contain an OS command injection vulnerability that allows a remote, unauthenticated attacker to escalate privileges to root via a crafted payload with the ping_addr parameter to ping.ccp.

D-LinkEPSS 92.8%

CVE-2021-40655KEV

High

D-Link DIR-605 routers contain an information disclosure vulnerability that allows attackers to obtain a username and password by forging a post request to the /getcfg.php page.

D-LinkEPSS 92.6%

CVE-2014-100005KEV

High

D-Link DIR-600 routers contain a cross-site request forgery (CSRF) vulnerability that allows an attacker to change router configurations by hijacking an existing administrator session.

D-LinkEPSS 40.8%

CVE-2024-3272KEV

High

D-Link DNS-320L, DNS-325, DNS-327L, and DNS-340L contains a hard-coded credential that allows an attacker to conduct authenticated command injection, leading to remote, unauthorized code execution.

D-LinkEPSS 94.2%

CVE-2024-3273KEV

High

D-Link DNS-320L, DNS-325, DNS-327L, and DNS-340L contain a command injection vulnerability. When combined with CVE-2024-3272, this can lead to remote, unauthorized code execution.

D-LinkEPSS 94.4%

CVE-2016-20017KEV

High

D-Link DSL-2750B devices contain a command injection vulnerability that allows remote, unauthenticated command injection via the login.cgi cli parameter.

D-LinkEPSS 93.4%

CVE-2019-20500KEV

High

D-Link DWL-2600AP access point contains an authenticated command injection vulnerability via the Save Configuration functionality in the Web interface, using shell metacharacters in the admin.cgi?action=config_save configBackup or downloadServerip parameter.

D-LinkEPSS 92.2%

CVE-2019-17621KEV

High

D-Link DIR-859 router contains a command execution vulnerability in the UPnP endpoint URL, /gena.cgi. Exploitation allows an unauthenticated remote attacker to execute system commands as root by sending a specially crafted HTTP SUBSCRIBE request to the UPnP service when connecting to the local network.

D-LinkEPSS 93.0%

CVE-2018-6530KEV

High

Multiple D-Link routers contain an unspecified vulnerability that allows for execution of OS commands.

D-LinkEPSS 94.3%

CVE-2022-26258KEV

High

D-Link DIR-820L contains an unspecified vulnerability in Device Name parameter in /lan.asp which allows for remote code execution.

D-LinkEPSS 87.6%

CVE-2011-4723KEV

High

The D-Link DIR-300 router stores cleartext passwords, which allows context-dependent attackers to obtain sensitive information.

D-LinkEPSS 12.7%

CVE-2019-16057KEV

High

The login_mgr.cgi script in D-Link DNS-320 is vulnerable to remote code execution.

D-LinkEPSS 93.7%

CVE-2021-45382KEV

High

A remote code execution vulnerability exists in all series H/W revisions routers via the DDNS function in ncc2 binary file.

D-LinkEPSS 94.2%

CVE-2016-11021KEV

High

setSystemCommand on D-Link DCS-930L devices allows a remote attacker to execute code via an OS command.

D-LinkEPSS 91.3%

1 2