Dlink Dir-615 Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Dlink Dir-615 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (19)
CVE-2021-37388 — CVSS 9.8 (critical): A buffer overflow in D-Link DIR-615 C2 3.03WW. The ping_ipaddr parameter in ping_response.cgi POST request allows an attacker to crash the…
CVE-2021-42627 — CVSS 9.8 (critical): The WAN configuration page "wan.htm" on D-Link DIR-615 devices with firmware 20.06 can be accessed directly without authentication which…
CVE-2018-25115 — CVSS 9.8 (critical): Multiple D-Link DIR-series routers, including DIR-110, DIR-412, DIR-600, DIR-610, DIR-615, DIR-645, and DIR-815 firmware version 1.03…
CVE-2013-10050 — CVSS 8.8 (high): An OS command injection vulnerability exists in multiple D-Link routers (confirmed on DIR-300 rev A v1.05 and DIR-615 rev D v4.13) via the…
CVE-2019-17525 — CVSS 8.8 (high): The login page on D-Link DIR-615 T1 20.10 devices allows remote attackers to bypass the CAPTCHA protection mechanism and conduct…
CVE-2019-17353 — CVSS 8.2 (high): An issue discovered on D-Link DIR-615 devices with firmware version 20.05 and 20.07. wan.htm can be accessed directly without…
CVE-2026-2152 — CVSS 7.2 (high): A vulnerability was found in D-Link DIR-615 4.10. This vulnerability affects unknown code of the file adv_routing.php of the component Web…
CVE-2026-1448 — CVSS 7.2 (high): A vulnerability was detected in D-Link DIR-615 up to 4.10. This impacts an unknown function of the file /wiz_policy_3_machine.php of the…
CVE-2026-1505 — CVSS 7.2 (high): A vulnerability was found in D-Link DIR-615 4.10. This issue affects some unknown processing of the file /set_temp_nodes.php of the…
CVE-2026-1506 — CVSS 7.2 (high): A vulnerability was determined in D-Link DIR-615 4.10. Impacted is an unknown function of the file /adv_mac_filter.php of the component MAC…
CVE-2026-2151 — CVSS 7.2 (high): A vulnerability has been found in D-Link DIR-615 4.10. This affects an unknown part of the file adv_firewall.php of the component DMZ Host…
CVE-2021-40654 — CVSS 6.5 (medium): An information disclosure issue exist in D-LINK-DIR-615 B2 2.01mt. An attacker can obtain a user name and password by forging a post…
CVE-2018-15874 — CVSS 6.1 (medium): Cross-site scripting (XSS) vulnerability on D-Link DIR-615 routers 20.07 allows an attacker to inject JavaScript into the "Status -> Active…
CVE-2018-15875 — CVSS 6.1 (medium): Cross-site scripting (XSS) vulnerability on D-Link DIR-615 routers 20.07 allows attackers to inject JavaScript into the router's admin UPnP…
CVE-2024-0717 — CVSS 5.3 (medium): A vulnerability classified as critical was found in D-Link DAP-1360, DIR-300, DIR-615, DIR-615GF, DIR-615S, DIR-615T, DIR-620, DIR-620S…
CVE-2019-19742 — CVSS 4.8 (medium): On D-Link DIR-615 devices, the User Account Configuration page is vulnerable to blind XSS via the name field.