Dlink Dir-2640-us Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Dlink Dir-2640-us Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2021-20132 — CVSS 8.8 (high): Quagga Services on D-Link DIR-2640 less than or equal to version 1.11B02 use default hard-coded credentials, which can allow a remote…
CVE-2021-20134 — CVSS 8.4 (high): Quagga Services on D-Link DIR-2640 less than or equal to version 1.11B02 are affected by an absolute path traversal vulnerability that…
CVE-2021-34203 — CVSS 8.1 (high): D-Link DIR-2640-US 1.01B04 is vulnerable to Incorrect Access Control. Router ac2600 (dir-2640-us), when setting PPPoE, will start quagga…
CVE-2021-34202 — CVSS 7.8 (high): There are multiple out-of-bounds vulnerabilities in some processes of D-Link AC2600(DIR-2640) 1.01B04. Ordinary permissions can be elevated…
CVE-2021-34201 — CVSS 7.1 (high): D-Link DIR-2640-US 1.01B04 is vulnerable to Buffer Overflow. There are multiple out-of-bounds vulnerabilities in some processes of D-Link…
CVE-2021-34204 — CVSS 6.8 (medium): D-Link DIR-2640-US 1.01B04 is affected by Insufficiently Protected Credentials. D-Link AC2600(DIR-2640) stores the device system account…
CVE-2021-20133 — CVSS 6.1 (medium): Quagga Services on D-Link DIR-2640 less than or equal to version 1.11B02 are affected by an absolute path traversal vulnerability that…