Every CVE whose affected-product data names Dlink Dir-615, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2017-11436 — CVSS 9.8 (critical): D-Link DIR-615 before v20.12PTb04 has a second admin account with a 0x1 BACKDOOR value, which might allow remote attackers to obtain access…
CVE-2017-7405 — CVSS 9.8 (critical): On the D-Link DIR-615 before v20.12PTb04, once authenticated, this device identifies the user based on the IP address of his machine. By…
CVE-2017-7406 — CVSS 9.8 (critical): The D-Link DIR-615 device before v20.12PTb04 doesn't use SSL for any of the authenticated pages. Also, it doesn't allow the user to…
CVE-2017-7404 — CVSS 8.8 (high): On the D-Link DIR-615 before v20.12PTb04, if a victim logged in to the Router's Web Interface visits a malicious site from another Browser…
CVE-2009-4821 — CVSS 5.0 (medium): The D-Link DIR-615 with firmware 3.10NA does not require administrative authentication for apply.cgi, which allows remote attackers to (1)…