This month has been quite eventful for D-Link. As reported by BleepingComputer, the company’s router firmware images have been leaking the secret key used to encrypt their proprietary firmware ...

Hackers are actively exploiting a pair of recently discovered vulnerabilities to remotely commandeer network-attached storage devices manufactured by D-Link, researchers said Monday. Roughly 92,000 ...

"The affected endpoint is also associated with unauthenticated DNS modification ("DNSChanger") behavior documented by D-Link, ...

D-Link warns all DIR-878 routers (discontinued in 2021) carry four RCE flaws Researcher Yangyifan released PoC exploit code; CISA has not yet added them to KEV catalog End-of-life routers are prime ...

A critical flaw in several end-of-life (EOL) models of D-Link network-attached storage (NAS) devices can allow attackers to backdoor the device and gain access to sensitive information, among other ...

1. Fixed: WIN server IP address be able to set 0.0.0.0 at P node type. 2. Fixed: PPPoE pass through issue. 3. Fixed: Configuring Access Control rules wirelessly cause router to reboot. 4. Fixed: UPnP ...

Threat actors are exploiting a recently discovered command injection vulnerability that affects multiple D-Link DSL gateway ...

Earlier this week, security researchers from VulnCheck announced finding a command injection vulnerability due to improper ...

Old D-Link routers are being hijacked via a zero-day vulnerability, known as CVE-2026-0625, which allows attackers to remotely execute commands. No patch is currently available.

Researchers have discovered a new vulnerability affecting older D-Link routers that don't receive security updates.