D-Link Dir 2640 Firmware

Don't miss out!

Thousands of developers use stack.watch to stay informed.
Get an email whenever new security vulnerabilities are reported in D-Link Dir 2640 Firmware.

By the Year

In 2026 there have been 0 vulnerabilities in D-Link Dir 2640 Firmware. Dir 2640 Firmware did not have any published security vulnerabilities last year.

Year	Vulnerabilities	Average Score
2026	0	0.00
2025	0	0.00
2024	8	0.00

It may take a day or so for new Dir 2640 Firmware vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.

Recent D-Link Dir 2640 Firmware Security Vulnerabilities

D-Link DIR-2640-US: HNAP HTTP Referer Buffer Overflow Enables RCE
CVE-2024-5293 - May 23, 2024

D-Link DIR-2640 HTTP Referer Stack-Based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-2640-US routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within prog.cgi, which handles HNAP requests made to the lighttpd webserver listening on TCP ports 80 and 443. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. An attacker can leverage this vulnerability to execute code in the context of root. Was ZDI-CAN-21853.

D-Link DIR-2640 EmailFrom Command Injection RCE via HNAP1 (CVE-2023-32153)
CVE-2023-32153 - May 03, 2024

D-Link DIR-2640 EmailFrom Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-2640 routers. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the handling of the EmailFrom parameter provided to the HNAP1 endpoint. The issue results from the lack of proper validation of a user-supplied string before using it to execute a system call. An attacker can leverage this vulnerability to execute code in the context of root. . Was ZDI-CAN-19550.

D-Link DIR-2640 HNAP Login Bypass via Authless POST (CVE-2023-32152)
CVE-2023-32152 - May 03, 2024

D-Link DIR-2640 HNAP LoginPassword Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of D-Link DIR-2640 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the web management interface, which listens on TCP port 80 by default. A specially crafted login request can cause authentication to succeed without providing proper credentials. An attacker can leverage this vulnerability to bypass authentication on the system. . Was ZDI-CAN-19549.

DIR-2640 Router RCE via DestNetwork Command Injection
CVE-2023-32151 - May 03, 2024

D-Link DIR-2640 DestNetwork Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-2640 routers. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the handling of the DestNetwork parameter provided to the HNAP1 endpoint. The issue results from the lack of proper validation of a user-supplied string before using it to execute a system call. An attacker can leverage this vulnerability to execute code in the context of root. . Was ZDI-CAN-19548.

D-Link DIR-2640 PrefixLen Command Injection RCE via HNAP1
CVE-2023-32150 - May 03, 2024

D-Link DIR-2640 PrefixLen Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-2640 routers. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the handling of the PrefixLen parameter provided to the HNAP1 endpoint. The issue results from the lack of proper validation of a user-supplied string before using it to execute a system call. An attacker can leverage this vulnerability to execute code in the context of root. . Was ZDI-CAN-19547.

D-Link DIR-2640 prog.cgi RCE via SBo
CVE-2023-32149 - May 03, 2024

D-Link DIR-2640 prog.cgi Request Handling Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-2640 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the web management interface, which listens on TCP port 80 by default. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. An attacker can leverage this vulnerability to execute code in the context of root. . Was ZDI-CAN-19546.

D-Link DIR-2640 HNAP Auth Bypass via Crafted XML
CVE-2023-32148 - May 03, 2024

D-Link DIR-2640 HNAP PrivateLogin Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of D-Link DIR-2640 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the web management interface, which listens on TCP port 80 by default. A crafted XML element in the login request can cause authentication to succeed without providing proper credentials. An attacker can leverage this vulnerability to bypass authentication on the system. . Was ZDI-CAN-19545.

D-Link DIR2640 HNAP1 LocalIPAddress Injection Root RCE
CVE-2023-32147 - May 03, 2024

D-Link DIR-2640 LocalIPAddress Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-2640 routers. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the handling of the LocalIPAddress parameter provided to the HNAP1 endpoint. The issue results from the lack of proper validation of a user-supplied string before using it to execute a system call. An attacker can leverage this vulnerability to execute code in the context of root. . Was ZDI-CAN-19544.

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for D-Link Dir 2640 Firmware or by D-Link? Click the Watch button to subscribe.

D-Link
Vendor

D-Link Dir 2640 Firmware
Product

D-Link Dir 2640 Firmware

Don't miss out!

By the Year

Recent D-Link Dir 2640 Firmware Security Vulnerabilities

D-Link DIR-2640-US: HNAP HTTP Referer Buffer Overflow Enables RCE CVE-2024-5293 - May 23, 2024

D-Link DIR-2640 EmailFrom Command Injection RCE via HNAP1 (CVE-2023-32153) CVE-2023-32153 - May 03, 2024

D-Link DIR-2640 HNAP Login Bypass via Authless POST (CVE-2023-32152) CVE-2023-32152 - May 03, 2024

DIR-2640 Router RCE via DestNetwork Command Injection CVE-2023-32151 - May 03, 2024

D-Link DIR-2640 PrefixLen Command Injection RCE via HNAP1 CVE-2023-32150 - May 03, 2024

D-Link DIR-2640 prog.cgi RCE via SBo CVE-2023-32149 - May 03, 2024

D-Link DIR-2640 HNAP Auth Bypass via Crafted XML CVE-2023-32148 - May 03, 2024

D-Link DIR2640 HNAP1 LocalIPAddress Injection Root RCE CVE-2023-32147 - May 03, 2024