D-Link says it won’t fix a serious security flaw affecting 60,000 older NAS devices

You May Be Interested In:Desky Dual Bamboo sit-stand desk review: an affordable, voice-controlled workplace essential




  • A critical vulnerability has been found in multiple D-Link models
  • Since the devices have reached end-of-life status, they won’t be patched
  • Mitigations are available, although users are advised to replace the devices

D-Link says it won’t fix a critical vulnerability plaguing tens of thousands of network-attached storage (NAS) devices because they have reached their end of life.

Recently, a vulnerability with a 9.2 severity score (critical) was found in multiple models of D-Link NAS devices. Tracked as CVE-2024-10914 it was described as a command injection exploit that allows threat actors to inject arbitrary shell commands. By sending a specially crafted HTTP GET request to the device, the crooks could cause significant system compromise, remotely.

share Paylaş facebook pinterest whatsapp x print

Similar Content

I never leave the house without this portable battery, and it's just $16 for Black Friday
I never leave the house without this portable battery, and it’s just $16 for Black Friday
Apple AirPods Pro 2 deal image
Apple AirPods Pro 2 drops further in price in this early Black Friday deal
Thousands of confidential UN documents linked to gender equality push leaked online
Thousands of confidential UN documents linked to gender equality push leaked online
Quick – LG's best cheap OLED TV is back to its record-low Black Friday price
Quick – LG’s best cheap OLED TV is back to its record-low Black Friday price
Samsung Galaxy Buds 3 Pro
The weirdest omission from the Samsung Galaxy S25 launch? Samsung and Google’s new Dolby Atmos-busting sound tech
A laptop with a red screen with a white skull on it with the message: "RANSOMWARE. All your files are encrypted."
Bad news – businesses who pay ransomware attackers aren’t very likely to get their data back
Global Gazette | © 2024 | News