Dlink R15 Firmware vulnerabilities
2 known vulnerabilities affecting dlink/r15_firmware.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2025-60854P2CRITICALCVSS 9.8≤ 1.20.012025-12-02
CVE-2025-60854 [CRITICAL] CWE-77 CVE-2025-60854: A vulnerability has been found in D-Link R15 (AX1500) 1.20.01 and below. By manipulating the model n
A vulnerability has been found in D-Link R15 (AX1500) 1.20.01 and below. By manipulating the model name parameter during a password change request in the web administrator page, it is possible to trigger a command injection in httpd.
nvd
CVE-2023-41603P4MEDIUMCVSS 5.3≤ 1.08.022024-01-10
CVE-2023-41603 [MEDIUM] CWE-284 CVE-2023-41603: D-Link R15 before v1.08.02 was discovered to contain no firewall restrictions for IPv6 traffic. This
D-Link R15 before v1.08.02 was discovered to contain no firewall restrictions for IPv6 traffic. This allows attackers to arbitrarily access any services running on the device that may be inadvertently listening via IPv6.
nvd