Security Advisories
Security Advisories
Global Security Advisories, Responses, and Notices
View By: Vulnerability | Model Number
Title Resolved Published Last Updated Related Products
DIR-685 rev. A1 / DIR-615 rev. C - CVE-2015-3036 - Kcodes NetUSB buffer overflow
Publication ID: SAP10057
Open 21 May 2015
4:49 GMT
21 May 2015
11:04 GMT
DIR-615
DIR-685
Realtek SDK miniigd : Authentication Bypass - Remote Code Execution
Publication ID: SAP10055
Yes 30 April 2015
3:24 GMT
15 May 2015
7:03 GMT
DIR-600L
DIR-605L
DIR-619L
DIR-809
DIR-905L
D-Link DIR-601 : Authentication Bypass - Captcha Bypass
Publication ID: SAP10056
Open 1 May 2015
4:31 GMT
2 May 2015
4:04 GMT
DIR-601
D-Link Router : HNAP Privilege Escalation - Command Injection
Publication ID: SAP10054
Partial 10 April 2015
5:51 GMT
25 April 2015
4:24 GMT
DAP-1522
DIR-300
DIR-600
DIR-629
DIR-645
DIR-815
DIR-816L
DIR-817LW
DIR-818L
DIR-818LW
DIR-820LW
DIR-850L
DIR-860L
DIR-865L
DIR-868L
DIR-880L
DIR-890L/R
DIR-645 : Rev. Ax - Command Injection - Buffer Overflow : FW 1.04b12
Publication ID: SAP10051
Yes 13 February 2015
4:29 GMT
25 April 2015
1:27 GMT
DIR-645
DCS-930L DCS-931L DCS-932L DCS-933L - Allows Authenticated User Unrestricted File Upload - CSRF - FW 1.04 and Older
Publication ID: SAP10049
Yes 12 February 2015
9:53 GMT
20 March 2015
5:44 GMT
DCS-930L
DCS-931L
DCS-932L
DCS-933L
DAP-1320 - Rev Ax - Command Injection - FW 1.11
Publication ID: SAP10050
Yes 12 February 2015
10:02 GMT
20 March 2015
4:10 GMT
DAP-1320
DIR-626L/DIR-636L/DIR-808L/DIR-810L/DIR-820L/DIR-826L/DIR-830L/DIR-836L - Remote code execution - Information disclosure - DNS hijacking
Publication ID: SAP10052
Yes 2 March 2015
5:09 GMT
16 March 2015
6:37 GMT
DIR-626L
DIR-636L
DIR-808L
DIR-810L
DIR-820L
DIR-826L
DIR-830L
DIR-836L
DIR-815 :: Rev. Bx :: Command Injection :: FW 2.03b01 and below
Publication ID: SAP10053
Partial 9 March 2015
4:43 GMT
9 March 2015
4:43 GMT
DIR-815
DIR-655 - Rev. Bx - Multiple Vulnerabilities - FW 2.11NA
Publication ID: SAP10048
Partial 22 December 2014
7:29 GMT
22 December 2014
9:20 GMT
DIR-655
D-Link Routers :: WPS-PIN factory default vulnerable
Publication ID: SAP10047
Partial 1 November 2014
12:41 GMT
4 November 2014
2:17 GMT
DAP-1350
DAP-1555
DGL-4500
DHP-1320
DIR-451
DIR-601
DIR-615
DIR-628
DIR-632
DIR-636L
DIR-651
DIR-655
DIR-657
DIR-808L
DIR-810L
DIR-825
DIR-826L
DIR-827
DIR-835
DIR-836L
DIR-855
DIR-857
DGS-1210-xx Rev. C1 / DGS-1500-xx Rev. Ax - OpenSSL CCS Injection Vulnerability
Publication ID: SAP10046
Yes 31 October 2014
8:11 GMT
31 October 2014
8:11 GMT
DGS-1210-20
DGS-1210-28
DGS-1210-28P
DGS-1210-52
DGS-1500-28
DGS-1500-28P
DGS-1500-52
DSR-500 / DSR-500N / DSR-1000 / DSR-1000N - OpenSSL CCS Injection Vulnerability
Publication ID: SAP10045
Yes 9 October 2014
1:31 GMT
9 October 2014
1:31 GMT
DSR-1000
DSR-1000N
DSR-500
DSR-500N
"Shell Shock" - GNU Bash shell vulnerabile to command injection vulnerability that may allow remote code execution.
Publication ID: SAP10044
Open 25 September 2014
9:24 GMT
6 October 2014
11:05 GMT
DIR-626L / DIR-636L / DIR-826L / DIR-836L - Authentication Bypass - USB Storage Directory Traversal - UPnP Buffer Overflow - Cross-Site Request Forgery (CSRF) Unauthenticated Bypass - Information Disclosure - / / v. 1.02 /
Publication ID: SAP10043
Yes 21 August 2014
9:04 GMT
11 September 2014
12:04 GMT
DIR-626L
DIR-636L
DIR-826L
DIR-836L
UPnP Software Stack Vulnerabilities (Rapid7) - Command Injection Via UDP - Affected/Corrected Devices
Publication ID: SAP10036
Yes 3 July 2014
1:10 GMT
21 August 2014
10:47 GMT
DWL-3200AP Rev. Ax / Bx - Unauthorized Command Bypass / Information Disclosure - FW: 2.40 / 2.55RC515
Publication ID: SAP10041
Partial 6 August 2014
11:47 GMT
14 August 2014
11:37 GMT
DWL-3200AP
DAP-2553 - Multiple Security Vulnerabilities: Authentication Bypass, XSS, CSRF, Remote Command Injection - Firmware 1.27 and lower
Publication ID: SAP10006
Yes 26 November 2013
10:56 GMT
11 August 2014
10:26 GMT
DAP-2553
DSP-W215 - Rev. A1 - Stack Overflow - Command Bypass - Information Disclosure- (FW 1.02 and Older)
Publication ID: SAP10027
Yes 15 May 2014
10:04 GMT
11 August 2014
10:22 GMT
DIR-280 - Rev. A1 - Change User Credentails without Authentication
Publication ID: SAP10021
Yes 17 March 2014
11:18 GMT
11 August 2014
10:20 GMT
DIR-280