Vulnerabilities > Dlink > DIR 615 Firmware
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-01-19 | CVE-2024-0717 | Unspecified vulnerability in Dlink products A vulnerability classified as critical was found in D-Link DAP-1360, DIR-300, DIR-615, DIR-615GF, DIR-615S, DIR-615T, DIR-620, DIR-620S, DIR-806A, DIR-815, DIR-815AC, DIR-815S, DIR-816, DIR-820, DIR-822, DIR-825, DIR-825AC, DIR-825ACF, DIR-825ACG1, DIR-841, DIR-842, DIR-842S, DIR-843, DIR-853, DIR-878, DIR-882, DIR-1210, DIR-1260, DIR-2150, DIR-X1530, DIR-X1860, DSL-224, DSL-245GR, DSL-2640U, DSL-2750U, DSL-G2452GR, DVG-5402G, DVG-5402G, DVG-5402GFRU, DVG-N5402G, DVG-N5402G-IL, DWM-312W, DWM-321, DWR-921, DWR-953 and Good Line Router v2 up to 20240112. | 5.3 |
| 2022-08-23 | CVE-2021-42627 | Unspecified vulnerability in Dlink products The WAN configuration page "wan.htm" on D-Link DIR-615 devices with firmware 20.06 can be accessed directly without authentication which can lead to disclose the information about WAN settings and also leverage attacker to modify the data fields of page. | 9.8 |
| 2021-09-24 | CVE-2021-40654 | Incorrect Authorization vulnerability in Dlink Dir-615 Firmware 17.00 An information disclosure issue exist in D-LINK-DIR-615 B2 2.01mt. | 6.5 |
| 2021-08-06 | CVE-2021-37388 | Classic Buffer Overflow vulnerability in Dlink Dir-615 Firmware 3.03Ww A buffer overflow in D-Link DIR-615 C2 3.03WW. | 9.8 |
| 2020-04-21 | CVE-2019-17525 | Improper Restriction of Excessive Authentication Attempts vulnerability in Dlink Dir-615 Firmware 20.10 The login page on D-Link DIR-615 T1 20.10 devices allows remote attackers to bypass the CAPTCHA protection mechanism and conduct brute-force attacks. | 8.8 |
| 2019-12-18 | CVE-2019-19742 | Cross-site Scripting vulnerability in Dlink Dir-615 Firmware 20.07 On D-Link DIR-615 devices, the User Account Configuration page is vulnerable to blind XSS via the name field. | 4.8 |
| 2019-10-09 | CVE-2019-17353 | Missing Authentication for Critical Function vulnerability in Dlink Dir-615 Firmware 20.05/20.07 An issue discovered on D-Link DIR-615 devices with firmware version 20.05 and 20.07. | 8.2 |
| 2019-09-27 | CVE-2019-16920 | OS Command Injection vulnerability in Dlink products Unauthenticated remote code execution occurs in D-Link products such as DIR-655C, DIR-866L, DIR-652, and DHP-1565. | 9.8 |
| 2018-08-28 | CVE-2018-15839 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Dlink Dir-615 Firmware D-Link DIR-615 devices have a buffer overflow via a long Authorization HTTP header. | 9.8 |
| 2018-08-25 | CVE-2018-15875 | Cross-site Scripting vulnerability in Dlink Dir-615 Firmware 20.07 Cross-site scripting (XSS) vulnerability on D-Link DIR-615 routers 20.07 allows attackers to inject JavaScript into the router's admin UPnP page via the description field in an AddPortMapping UPnP SOAP request. | 6.1 |