D-link Dir-600m Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names D-link Dir-600m Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2017-5874 — CVSS 8.8 (high): CSRF exists on D-Link DIR-600M Rev. Cx devices before v3.05ENB01_beta_20170306. This can be used to bypass authentication and insert XSS…
CVE-2017-10676 — CVSS 6.1 (medium): On D-Link DIR-600M devices before C1_v3.05ENB01_beta_20170306, XSS was found in the form2userconfig.cgi username parameter.