371
CVEs
46
Critical
190
High
0
KEV
277
PoC
230
Unpatched C/H
3.0%
Patch Rate
0.2%
Avg EPSS
Severity Breakdown
CRITICAL
46
HIGH
190
MEDIUM
53
LOW
82
Monthly CVE Trend
Affected Products (30)
Dir 513 Firmware
34
Dir 619l Firmware
28
Dir 816 Firmware
26
Dwr M960 Firmware
22
Dir 823x Firmware
18
Dir 605l Firmware
17
PHP
13
Di 7003G Firmware
11
Di 8100 Firmware
10
Dwr M920 Firmware
10
Dir 600L Firmware
9
Dsl 7740C Firmware
9
Cloudlink
8
Dir 618 Firmware
8
Dir 853 Firmware
7
Dsl 3782 Firmware
7
Dcs 932l Firmware
6
Dir 825 Firmware
6
Dir 816L Firmware
6
Dir 822K Firmware
6
Dir 615 Firmware
5
Dir 878 Firmware
5
Dap 2695 Firmware
4
Dnr 326
4
Dap 1620 Firmware
4
Dir 823G Firmware
4
Dns 1100 4
4
Dns 120
4
Dir 882 Firmware
4
Dnr 202l
4
Top Risky CVEs
| CVE | Summary | Severity | CVSS | EPSS | Priority | Signals |
|---|---|---|---|---|---|---|
| CVE-2025-69542 | D-Link DIR-895L router has command injection in the DHCP daemon via the hostname parameter during lease renewal. Any device requesting a DHCP lease with a malicious hostname achieves root code execution on the router. PoC available. | CRITICAL | 9.8 | 1.5% | 71 |
PoC
No patch
|
| CVE-2025-45931 | An issue D-Link DIR-816-A2 DIR-816A2_FWv1.10CNB05_R1B011D88210 allows a remote attacker to execute arbitrary code via system() function in the bin/goahead file | CRITICAL | 9.8 | 1.5% | 70 |
PoC
No patch
|
| CVE-2025-5623 | Critical stack-based buffer overflow vulnerability in D-Link DIR-816 1.10CNB05 affecting the qosClassifier function's dip_address/sip_address parameters. This unauthenticated, remotely exploitable flaw allows attackers to achieve complete system compromise (confidentiality, integrity, and availability impact). The vulnerability affects end-of-life products no longer receiving vendor support, with public exploit disclosure and confirmed proof-of-concept availability increasing real-world exploitation risk. | CRITICAL | 9.8 | 1.0% | 70 |
PoC
No patch
|
| CVE-2025-5624 | Critical stack-based buffer overflow vulnerability in D-Link DIR-816 firmware version 1.10CNB05 affecting the QoSPortSetup function. An unauthenticated remote attacker can exploit this vulnerability by manipulating port0_group, port0_remarker, ssid0_group, or ssid0_remarker parameters to achieve arbitrary code execution, complete system compromise (confidentiality, integrity, availability), and full device takeover. Public exploit code has been disclosed, increasing real-world exploitation risk significantly. | CRITICAL | 9.8 | 0.7% | 70 |
PoC
No patch
|
| CVE-2025-5630 | Critical stack-based buffer overflow vulnerability in D-Link DIR-816 firmware version 1.10CNB05 affecting the /goform/form2lansetup.cgi endpoint. An unauthenticated remote attacker can exploit this vulnerability by manipulating the 'ip' parameter to achieve complete system compromise including data exfiltration, integrity violation, and denial of service. The vulnerability has public exploit code available and affects end-of-life products no longer receiving vendor support. | CRITICAL | 9.8 | 0.7% | 70 |
PoC
No patch
|
| CVE-2025-7206 | A vulnerability, which was classified as critical, has been found in D-Link DIR-825 2.10. This issue affects the function sub_410DDC of the file switch_language.cgi of the component httpd. The manipulation of the argument Language leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. This vulnerability only affects products that are no longer supported by the maintainer. | CRITICAL | 9.8 | 0.5% | 70 |
PoC
No patch
|
| CVE-2025-45784 | D-Link DPH-400S/SE VoIP phones running firmware v1.01 contain hardcoded provisioning credentials (PROVIS_USER_PASSWORD) embedded directly in the firmware binary, allowing attackers with firmware access to extract sensitive authentication material via static analysis tools. This critical vulnerability (CVSS 9.8) enables unauthorized access to device management functions and potentially user accounts, with network-accessible exploitation possible if combined with firmware extraction techniques. | CRITICAL | 9.8 | 0.5% | 70 |
PoC
No patch
|
| CVE-2026-3485 | Command injection in D-Link DIR-868L via SSDP service. PoC available. | CRITICAL | 9.8 | 0.4% | 69 |
PoC
No patch
|
| CVE-2025-6121 | Critical stack-based buffer overflow vulnerability in D-Link DIR-632 firmware version FW103B08, affecting the HTTP POST request handler's get_pure_content function. An unauthenticated remote attacker can exploit this via a malicious Content-Length header to achieve complete system compromise including arbitrary code execution, data theft, and denial of service. Public exploit code exists for this end-of-life product, creating immediate risk for any remaining deployed instances. | CRITICAL | 9.8 | 0.3% | 69 |
PoC
No patch
|
| CVE-2025-5622 | Critical stack-based buffer overflow vulnerability in D-Link DIR-816 wireless router (version 1.10CNB05) affecting the 5GHz wireless configuration interface. An unauthenticated remote attacker can exploit improper input validation in the wirelessApcli_5g function to achieve complete system compromise including arbitrary code execution, data theft, and service disruption. Public exploit code exists and the affected product line is end-of-life, creating significant risk for unpatched deployments. | CRITICAL | 9.8 | 0.3% | 69 |
PoC
No patch
|
| CVE-2025-70231 | Path traversal in D-Link DIR-513 verification code processing. PoC available. | CRITICAL | 9.8 | 0.1% | 69 |
PoC
No patch
|
| CVE-2025-46108 | D-link Dir-513 A1FW110 is vulnerable to Buffer Overflow in the function formTcpipSetup. [CVSS 9.8 CRITICAL] | CRITICAL | 9.8 | 0.1% | 69 |
PoC
No patch
|
| CVE-2025-70218 | Stack buffer overflow in D-Link DIR-513 v1.10 via the curTime parameter to goform/formAdvFirewall. Part of a family of 15+ critical buffer overflows in this router. | CRITICAL | 9.8 | 0.1% | 69 |
PoC
No patch
|
| CVE-2025-70220 | Stack buffer overflow in D-Link DIR-513 v1.10 via the curTime parameter to goform/formAutoDetecWAN_wizard4. Part of a family of 15+ critical buffer overflows in this router. | CRITICAL | 9.8 | 0.1% | 69 |
PoC
No patch
|
| CVE-2025-70223 | Stack buffer overflow in D-Link DIR-513 v1.10 via the curTime parameter to goform/formAdvNetwork. Part of a family of 15+ critical buffer overflows in this router. | CRITICAL | 9.8 | 0.1% | 69 |
PoC
No patch
|