Vulnerabilities in D-Link

778 results
Vexday analysis

Com 777 CVEs catalogadas e 57 surgidas nos últimos 90 dias, o portfólio de vulnerabilidades da D-Link apresenta um ritmo de descoberta que exige monitoramento contínuo. A taxa de exploração ativa está em linha com a média geral do catálogo, mas o destaque crítico é CVE-2024-3273, que possui EPSS máximo de 1.0 — indicando probabilidade extremamente alta de exploração ativa —, e deve ser tratada como prioridade absoluta de mitigação. A presença de 80 CVEs com PoC pública, combinada com 56 falhas de severidade crítica, amplia significativamente a superfície de ataque disponível para agentes mal-intencionados. O tipo de falha mais frequente, CWE-121 (stack-based buffer overflow), é historicamente associado à execução remota de código, o que reforça a urgência de aplicar correções e segmentar dispositivos D-Link expostos à rede.

CVE-2023-35737HIGHD-Link DAP-2622 DDP Configuration Backup Auth Username Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-35729HIGHD-Link DAP-2622 DDP Reset Auth Username Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-35752HIGHD-Link DAP-2622 DDP Set AG Profile Auth Password Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-35739HIGHD-Link DAP-2622 DDP Configuration Backup Server IPv6 Address Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-35730HIGHD-Link DAP-2622 DDP Reset Auth Password Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-41214HIGHD-Link DAP-1325 setDhcpAssignRangeUpdate lan_ipaddr Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-41204HIGHD-Link DAP-1325 SetAPLanSettings SecondaryDNS Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-35727HIGHD-Link DAP-2622 DDP Reboot Auth Username Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-35718HIGHD-Link DAP-2622 DDP Change ID Password Auth Password Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-35756HIGHD-Link DAP-2622 DDP Set Date-Time Auth Password Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-35736HIGHD-Link DAP-2622 DDP Change ID Password New Password Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-35755HIGHD-Link DAP-2622 DDP Set Date-Time Auth Username Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-35725HIGHD-Link DAP-2622 DDP User Verification Auth Username Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-41202HIGHD-Link DAP-1325 SetAPLanSettings Mode Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-35728HIGHD-Link DAP-2622 DDP Reboot Auth Password Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-35745HIGHD-Link DAP-2622 DDP Configuration Restore Filename Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-35754HIGHD-Link DAP-2622 DDP Set AG Profile NMS URL Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-41212HIGHD-Link DAP-1325 SetTriggerAPValidate Key Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-41203HIGHD-Link DAP-1325 SetAPLanSettings PrimaryDNS Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-41211HIGHD-Link DAP-1325 SetHostIPv6StaticSettings StaticPrefixLength Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.9%