Dir-655 firmware
This hub aggregates every CVE we track for Dir-655 firmware, a product in the networking infrastructure space. Use it to gauge the current risk picture and drill into individual advisories.
7
CVEs tracked
3
Critical
2
High
1
In CISA KEV
Severity distribution
CRITICAL3HIGH2MEDIUM2
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
1
0
0
0
0
0
0
0
0
0
0
0
0
2024-072026-06
Latest CVEs
The 7 most recently published vulnerabilities affecting Dir-655 firmware.
- CVE-2025-6158D-Link DIR-665 HTTP POST Request sub_AC78 stack-based overflow8.8
- CVE-2019-16920Unauthenticated remote code execution occurs in D-Link products such as DIR-655C, DIR-866L, DIR-652, and DHP-1565. The issue occurs when the attacker sends an arbitrary input to a "PingTest" device...KEV9.8
- CVE-2019-13563D-Link DIR-655 C devices before 3.02B05 BETA03 allow CSRF for the entire management console.8.8
- CVE-2019-13562D-Link DIR-655 C devices before 3.02B05 BETA03 allow XSS, as demonstrated by the /www/ping_response.cgi ping_ipaddr parameter, the /www/ping6_response.cgi ping6_ipaddr parameter, and the /www/apply...6.1
- CVE-2019-13561D-Link DIR-655 C devices before 3.02B05 BETA03 allow remote attackers to execute arbitrary commands via shell metacharacters in the online_firmware_check.cgi check_fw_url parameter.9.8
- CVE-2019-13560D-Link DIR-655 C devices before 3.02B05 BETA03 allow remote attackers to force a blank password via the apply_sec.cgi setup_wizard parameter.9.8
- CVE-2014-9518Cross-site scripting (XSS) vulnerability in login.cgi in D-Link router DIR-655 (rev Bx) with firmware before 2.12b01 allows remote attackers to inject arbitrary web script or HTML via the html_resp...4.3
Product normalization is registry-driven with AI assist and human review. How it works