Dlink Dir-601 Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Dlink Dir-601 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2019-16327 — CVSS 9.8 (critical): D-Link DIR-601 B1 2.00NA devices are vulnerable to authentication bypass. They do not check for authentication at the server side and rely…
CVE-2019-16326 — CVSS 8.8 (high): D-Link DIR-601 B1 2.00NA devices have CSRF because no anti-CSRF token is implemented. A remote attacker could exploit this in conjunction…
CVE-2018-10641 — CVSS 8.1 (high): D-Link DIR-601 A1 1.02NA devices do not require the old password for a password change, which occurs in cleartext.
CVE-2018-12710 — CVSS 8.0 (high): An issue was discovered on D-Link DIR-601 2.02NA devices. Being local to the network and having only "User" account (which is a low…
CVE-2018-5708 — CVSS 8.0 (high): An issue was discovered on D-Link DIR-601 B1 2.02NA devices. Being on the same local network as, but being unauthenticated to, the…
CVE-2011-4821 — CVSS 5.0 (medium): Directory traversal vulnerability in the TFTP server in D-Link DIR-601 Wireless N150 Home Router with firmware 1.02NA allows remote…