CVE-2014-100005β€”D-Link DIR-600 Router Cross-Site Request Forgery (CSRF) Vulnerability

PUBLISHEDvulnerability record
2024-05-16 Β· last modified June 21, 2025

Metadata

CVE ID:
CVE-2014-100005
Project:
D-Link
Product:
DIR-600 Router
Date Added:
2024-05-16
Due Date:
2024-06-06
Last Updated:
June 21, 2025

Vulnerability Name

D-Link DIR-600 Router Cross-Site Request Forgery (CSRF) Vulnerability

Description

D-Link DIR-600 routers contain a cross-site request forgery (CSRF) vulnerability that allows an attacker to change router configurations by hijacking an existing administrator session.

Known To Be Used in Ransomware Campaigns?

Ransomware Status:
Unknown

Action

This vulnerability affects legacy D-Link products. All associated hardware revisions have reached their end-of-life (EOL) or end-of-service (EOS) life cycle and should be retired and replaced per vendor instructions.

Additional Notes

Related Weaknesses