EOL D-Link Routers Vulnerable to Remote Command Execution

Original release date: October 24, 2019

The CERT Coordination Center (CERT/CC) has released information on a vulnerability (CVE-2019-16920) affecting multiple D-Link routers. A remote attacker could exploit this vulnerability to take control of an affected device.

D-Link no longer provides support to the affected end-of-life (EOL) devices, and updates will not be made available. The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review Vulnerability Note VU#766427 and replace any affected device with one currently supported by the vendor.

This product is provided subject to this Notification and this Privacy & Use policy.