Vulnerabilities > Dlink > DIR 2640 US Firmware > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-12-30 | CVE-2021-20133 | Path Traversal vulnerability in Dlink Dir-2640-Us Firmware 1.01/1.01B04/1.11B02 Quagga Services on D-Link DIR-2640 less than or equal to version 1.11B02 are affected by an absolute path traversal vulnerability that allows a remote, authenticated attacker to set the "message of the day" banner to any file on the system, allowing them to read all or some of the contents of those files. | 6.1 |
| 2021-06-16 | CVE-2021-34204 | Insufficiently Protected Credentials vulnerability in Dlink Dir-2640-Us Firmware 1.01B04 D-Link DIR-2640-US 1.01B04 is affected by Insufficiently Protected Credentials. | 6.8 |