D-Link NAS Archives • Cybersecurity News

November 13, 2024

CVE-2024-10914: Critical Flaw in D-Link NAS Devices Actively Exploited, No Patch!

A critical command injection vulnerability (CVE-2024-10914) impacting numerous end-of-life D-Link network-attached storage (NAS) devices is currently under active exploitation. This vulnerability, assigned a CVSSv3 score of 9.2, poses a significant...

Vulnerability

November 7, 2024

CVE-2024-10914 (CVSS 9.2): Command Injection Flaw Threatens 61,000+ D-Link NAS Devices

A critical vulnerability, CVE-2024-10914, has been identified in D-Link NAS devices, posing a severe risk to over 61,000 systems worldwide. The flaw, a command injection vulnerability in the `account_mgr.cgi` script,...

Cyber Security / Vulnerability

May 30, 2024

Hackers Actively Exploiting Critical D-Link NAS Vulnerability: 90,000+ Devices at Risk

CYFIRMA, a leading cybersecurity firm, has issued an urgent warning regarding a critical vulnerability (CVE-2024-3273) discovered in multiple end-of-life D-Link network-attached storage (NAS) devices. This vulnerability has been assigned a...