Dir-815

This hub aggregates every CVE we track for Dir-815, a product in the networking infrastructure space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 9 most recently published vulnerabilities affecting Dir-815.

• CVE-2018-25115D-Link DIR-110/412/600/615/645/815 RCE via service.cgi9.8Aug 27, 2025
• CVE-2025-6328D-Link DIR-815 hedwig.cgi sub_403794 stack-based overflow8.8Jun 20, 2025
• CVE-2024-22651There is a command injection vulnerability in the ssdpcgi_main function of cgibin binary in D-Link DIR-815 router firmware v1.04.9.8Jan 24, 2024
• CVE-2024-0717D-Link Good Line Router v2 HTTP GET Request devinfo information disclosure5.3Jan 19, 2024
• CVE-2023-51123An issue discovered in D-Link dir815 v.1.01SSb08.bin allows a remote attacker to execute arbitrary code via a crafted POST request to the service parameter in the soapcgi_main function of the cgibi...9.8Jan 10, 2024
• CVE-2023-37758D-LINK DIR-815 v1.01 was discovered to contain a buffer overflow via the component /web/captcha.cgi.7.5Jul 18, 2023
• CVE-2018-10106D-Link DIR-815 REV. B (with firmware through DIR-815_REVB_FIRMWARE_PATCH_2.07.B01) devices have permission bypass and information disclosure in /htdocs/web/getcfg.php, as demonstrated by a /getcfg....9.8Apr 16, 2018
• CVE-2018-10107D-Link DIR-815 REV. B (with firmware through DIR-815_REVB_FIRMWARE_PATCH_2.07.B01) devices have XSS in the RESULT parameter to /htdocs/webinc/js/info.php.6.1Apr 16, 2018
• CVE-2014-8888The remote administration interface in D-Link DIR-815 devices with firmware before 2.03.B02 allows remote attackers to execute arbitrary commands via vectors related to an "HTTP command injection i...9.8Apr 12, 2018