Security News > 2024 > September > D-Link fixes critical RCE, hardcoded password flaws in WiFi 6 routers

D-Link fixes critical RCE, hardcoded password flaws in WiFi 6 routers

2024-09-16 14:24

D-Link has fixed critical vulnerabilities in three popular wireless router models that allow remote attackers to execute arbitrary code or access the devices using hardcoded credentials. [...]

News URL

https://www.bleepingcomputer.com/news/security/d-link-fixes-critical-rce-hardcoded-password-flaws-in-wifi-6-routers/

#critical #dlink #RCE #router #wifi

Related news

Critical RCE flaw in Apache Tomcat actively exploited in attacks (source)
Critical Veeam Backup & Replication RCE vulnerability fixed, patch ASAP! (CVE-2025-23120) (source)
Infoseccers criticize Veeam over critical RCE vulnerability and a failing blacklist (source)
Critical Ingress NGINX Controller Vulnerability Allows RCE Without Authentication (source)
Gladinet’s Triofox and CentreStack Under Active Exploitation via Critical RCE Vulnerability (source)
Critical Erlang/OTP SSH pre-auth RCE is 'Surprisingly Easy' to exploit, patch now (source)
ASUS warns of critical auth bypass flaw in routers using AiCloud (source)
ASUS Confirms Critical Flaw in AiCloud Routers; Users Urged to Update Firmware (source)
Critical Erlang/OTP SSH RCE bug now has public exploits, patch now (source)
Critical Commvault RCE vulnerability fixed, PoC available (CVE-2025-34028) (source)

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
D Link		82	0	9	29	34	72

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.