Vulnerabilidades em D-Link

777 resultados
Análise Vexday

Com 777 CVEs catalogadas e 57 surgidas nos últimos 90 dias, o portfólio de vulnerabilidades da D-Link apresenta um ritmo de descoberta que exige monitoramento contínuo. A taxa de exploração ativa está em linha com a média geral do catálogo, mas o destaque crítico é CVE-2024-3273, que possui EPSS máximo de 1.0 — indicando probabilidade extremamente alta de exploração ativa —, e deve ser tratada como prioridade absoluta de mitigação. A presença de 80 CVEs com PoC pública, combinada com 56 falhas de severidade crítica, amplia significativamente a superfície de ataque disponível para agentes mal-intencionados. O tipo de falha mais frequente, CWE-121 (stack-based buffer overflow), é historicamente associado à execução remota de código, o que reforça a urgência de aplicar correções e segmentar dispositivos D-Link expostos à rede.

CVE-2024-9569HIGHD-Link DIR-619L B1 formEasySetPassword buffer overflowEPSS 1.3%CVE-2024-9567HIGHD-Link DIR-619L B1 formAdvFirewall buffer overflowEPSS 1.3%CVE-2023-32149HIGHD-Link DIR-2640 prog.cgi Request Handling Stack-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 1.2%CVE-2026-4194MEDIUMD-Link DNS-1550-04 system_mgr.cgi cgi_set_wto access controlEPSS 1.2%CVE-2024-11048HIGHD-Link DI-8003 dbsrv.asp dbsrv_asp stack-based overflowEPSS 1.2%CVE-2023-41190HIGHD-Link DAP-1325 HNAP SetAPLanSettings IPAddr Command Injection Remote Code Execution VulnerabilityEPSS 1.2%CVE-2023-41199HIGHD-Link DAP-1325 HNAP SetHostIPv6StaticSettings StaticDNS2 Command Injection Remote Code Execution VulnerabilityEPSS 1.2%CVE-2023-41189HIGHD-Link DAP-1325 HNAP SetAPLanSettings Gateway Command Injection Remote Code Execution VulnerabilityEPSS 1.2%CVE-2023-41196HIGHD-Link DAP-1325 HNAP SetHostIPv6StaticSettings StaticAddress Command Injection Remote Code Execution VulnerabilityEPSS 1.2%CVE-2023-35723HIGHD-Link DIR-X3260 prog.cgi SOAPAction Command Injection Remote Code Execution VulnerabilityEPSS 1.2%CVE-2023-41195HIGHD-Link DAP-1325 HNAP SetHostIPv6Settings IPv6Mode Command Injection Remote Code Execution VulnerabilityEPSS 1.2%CVE-2023-41197HIGHD-Link DAP-1325 HNAP SetHostIPv6StaticSettings StaticDefaultGateway Command Injection Remote Code Execution VulnerabilityEPSS 1.2%CVE-2023-41188HIGHD-Link DAP-1325 HNAP SetAPLanSettings DeviceName Command Injection Remote Code Execution VulnerabilityEPSS 1.2%CVE-2023-41198HIGHD-Link DAP-1325 HNAP SetHostIPv6StaticSettings StaticDNS1 Command Injection Remote Code Execution VulnerabilityEPSS 1.2%CVE-2023-41200HIGHD-Link DAP-1325 HNAP SetHostIPv6StaticSettings StaticPrefixLength Command Injection Remote Code Execution VulnerabilityEPSS 1.2%CVE-2023-41192HIGHD-Link DAP-1325 HNAP SetAPLanSettings PrimaryDNS Command Injection Remote Code Execution VulnerabilityEPSS 1.2%CVE-2023-41193HIGHD-Link DAP-1325 HNAP SetAPLanSettings SecondaryDNS Command Injection Remote Code Execution VulnerabilityEPSS 1.2%CVE-2023-41194HIGHD-Link DAP-1325 HNAP SetAPLanSettings SubnetMask Command Injection Remote Code Execution VulnerabilityEPSS 1.2%CVE-2023-41191HIGHD-Link DAP-1325 HNAP SetAPLanSettings Mode Command Injection Remote Code Execution VulnerabilityEPSS 1.2%CVE-2023-41201HIGHD-Link DAP-1325 HNAP SetSetupWizardStatus Enabled Command Injection Remote Code Execution VulnerabilityEPSS 1.2%