Multiple vulnerabilities in D‑Link routers

25 October, 2018

Overview:

On October 12, 2018, sploit.tech reported multiple vulnerabilities in D-Link routers. D-Link is aware of the reported security issues. We have promptly started our investigation and is currently working on firmware patches for products confirmed to be affected. We will provide updates as soon as we have more information, please see below for more details. 

Reference:

 

Reported products:

 

Model H/W Ver. Affected Firmware Ver. Current Status
DWR-111 All A Revisions v. 1.01 and lower Patch available. In regions where this product is
available, please check your local D-Link website.
DWR-116 All A Revisions v.1.06 and lower Latest firmware is not affected
DWR-512 All B Revisions v. 2.02 and lower Firmware available
DWR-712 All B Revisions v. 2.02 and lower Patch available. In regions where this product is
available, please check your local D-Link website.
DWR-912 N/A Invalid model number
DWR-921 All A/B Revisions v. 2.02 and lower

Firmware available:
H/W ver. A
H/W ver. B

DIR-140L All A Revisions v. 1.02B02 and lower Under Investigation
DIR-640L All A Revisions v. 1.02B02 and lower Under Investigation

 
D-Link takes the issues of network security and user privacy very seriously. We have a dedicated task force and product management team on call to address evolving security issues and implement appropriate security measures. Please check the D-Link website for updates.