On October 16th, researchers disclosed security vulnerabilities in the widely used standard for Wi-Fi security WPA2 (Wi-Fi Protected Access II) that make it possible for attackers to eavesdrop on Wi-Fi traffic. D-Link has immediately taken actions to investigate this matter. This security concern appears to be an industry-wide issue that will require firmware patches to be provided from the relevant semiconductor chipset manufacturers.
D-Link has requested assistance from the chipset manufacturers. As soon as the firmware patches are received from the chipset manufacturers, we will post them on our websites immediately. Please take the following important actions to help protect your privacy:
1. Is highly recommended to use encrypted communications protocols such as VPN or HTTPS, especially when delivering confidential information.
2. Check our website regularly for the newest firmware updates.
[Update 11/30/17 for products sold in US]
Associated CVE IDs for CERT/CC VU number: VU#228519
- CVE-2017-13077
- CVE-2017-13078
- CVE-2017-13079
- CVE-2017-13080
- CVE-2017-13081
- CVE-2017-13082
The WPA2 protocol is ubiquitous in wireless networking. The vulnerabilities described are in the standard requiring a broad product-line and industry correction. Users are encouraged to install updates to affected products and hosts as they are available. For information about a specific product, check the table. Note that the table list below is not exhaustive, and we recommend to check back frequently over the next 30 days.
These WPA-2 vulnerabilities affect the following (US products):
mydlink Cameras:
| Model |
Ver. |
Current Status
|
Last Updated |
Notes Or Estimated Release Date |
| DCS-2132L |
A1 |
Under Development |
08/08/18
|
|
| DCS-2132L |
B1 |
Under Development |
08/08/18 |
|
| DCS-2136L |
A1 |
Pending |
08/08/18 |
|
| DCS-2230L |
A1 |
Pending |
08/08/18 |
|
| DCS-2330L |
A1 |
Under Development |
08/08/18 |
|
| DCS-2332L |
A1 |
Under Development |
08/08/18 |
|
| DCS-2530L |
A2 |
Official Release
|
08/08/18 |
Closed: Update through Mydlink Lite or Mydlink Mobile Application |
| DCS-2630L |
Ax |
Official Release |
08/08/18 |
Closed: Update through Mydlink
|
| DCS-2670L |
A1 |
Under Development |
08/08/18 |
|
| DCS-5009L |
A1 |
Pending |
08/08/18 |
|
| DCS-5010L |
A1 |
Pending |
08/08/18 |
|
| DCS-5020L |
A1 |
Pending |
08/08/18 |
|
| DCS-5029L |
A2 |
Official Release |
07/11/19 |
Closed: Update through Mydlink Lite Mobile Application |
| DCS-5030L |
A1 |
Official Release |
10/30/18 |
Closed: Update through Mydlink Lite or Mydlink Mobile Application |
| DCS-5222L |
A3 |
Pending |
08/08/18 |
|
| DCS-5222L |
B2 |
Under Development |
08/08/18 |
|
| DCS-700L |
A1 |
Official Release |
01/30/19 |
|
| DCS-8000LH |
A1 |
V1.02.04 |
08/08/18 |
Closed: Update only through Mydlink Lite Mobile Application |
| DCS-8000LH |
A1 |
V2.00.05 |
08/08/18 |
Closed: Updated only through Mydlink Mobile Application |
| DCS-800L |
A1 |
Official Release |
08/08/18 |
Closed |
| DCS-8200LH |
A1 |
Patch Release Here |
08/08/18 |
Closed :: Updated through Mydlink Mobile Application |
| DCS-820L |
A1 |
Pending |
08/08/18 |
|
| DCS-825L |
A1 |
Pending |
08/08/18 |
|
| DCS-850L |
A1 |
Under Development |
08/08/18 |
|
| DCS-855L |
A1 |
Pending |
08/08/18 |
|
| DCS-930L |
A3 |
Pending |
08/08/18 |
|
| DCS-930L |
B2 |
Official Release |
03/12/19 |
Closed :: Updated through Mydlink
|
| DCS-931L |
A1 |
Pending |
08/08/18 |
|
| DCS-932L |
A1 |
Pending |
08/08/18 |
|
| DCS-932L |
Bx |
Official Release |
08/08/18 |
Closed :: Updated through Mydlink |
| DCS-933L |
A1 |
Pending |
08/08/18 |
|
| DCS-935L |
A1 |
Patch Release Here |
08/08/18 |
Closed :: Product has entered End of Life Maintence :: Patch Release Only
|
| DCS-936L |
A1 |
Official Release Here |
10/10/18 |
Re-Opened recent released patch disqualified based on bug reports |
| DCS-942L |
A3 |
Pending |
08/08/18 |
|
| DCS-942L |
B1 |
Under Development |
08/08/18 |
|
| DCS-960L |
A1 |
Official Release Here |
08/08/18 |
Closed :: Update through Mydlink Lite Mobile Application |
| OMNA DSH-C310 |
A1 |
Official Release v.1.04 |
10/30/18 |
Closed :: Updated through OMNA mobile application
|
COVR WiFi System:
| Model |
Ver. |
Current Status |
Last Updated |
Notes |
| COVR-3902-US |
A1 |
- |
08/08/18 |
This is a Kit of COVR-2600 Router & COVR-1300E (See following below) |
| COVR-2600 |
A1 |
|
08/08/18 |
Not Affected (Please use latest firmware 1.01B05 prior to updating COVR-1300E) |
| COVR-1300E |
A1 |
Patch Release Here |
10/16/18 |
Please update COVR-2600 router first to 1.01B05 prior to updating COVR-1300E |
W-Fi Routers :
WiFi Range Extenders:
Unified Wireless System Access Points
Important Note for Owners:
In default configuration the unified wireless system products are NOT AFFECTED.
ONLY If the Wireless Distribution System (WDS) feature is ENABLED will make this ecosystem vulnerable and Affected.
Recommendation: We recommend to disable WDS until patches are made available.
| Model |
Ver. |
Current Status |
Last Updated |
Notes |
| DWL-2600AP |
Ax
|
Official Release Here |
08/10/18 |
Closed |
| DWL-3600AP |
Ax |
Official Release Here |
04/20/18 |
Closed: Not Affected if WDS Disabled / Affected if WDS Enabled |
| DWL-3610AP |
A1 |
Official Release Here |
04/10/18 |
Closed: Not Affected if WDS Disabled / Affected if WDS Enabled |
| DWL-6600AP |
Ax |
Official Release Here |
04/20/18 |
Closed: Not Affected if WDS Disabled / Affected if WDS Enabled |
| DWL-6610AP |
A1 |
Official Release Here |
12/04/18 |
Closed: Not Affected if WDS Disabled / Affected if WDS Enabled |
| DWL-6610AP |
B1 |
Patch Release Here |
04/10/18 |
Closed: Not Affected if WDS Disabled / Affected if WDS Enabled |
| DWL-6610APE |
B1 |
Patch Release Here |
04/10/18 |
Closed: Not Affected if WDS Disabled / Affected if WDS Enabled |
| DWL-8600AP |
Ax |
Patch Release Here |
04/10/18 |
Closed: Not Affected if WDS Disabled / Affected if WDS Enabled |
| DWL-8610AP |
Ax |
Patch Release Here |
04/10/18 |
Closed: Not Affected if WDS Disabled / Affected if WDS Enabled |
| DWL-8710AP |
A1 |
Patch Release Here |
04/10/18 |
Closed: Not Affected if WDS Disabled / Affected if WDS Enabled |
WiFi Adapters:
| Model |
Ver. |
Current Status |
Last Updated |
Notes |
| DWA-130 |
F1 |
Win |
08/08/18
|
|
| DWA-131 |
E1 |
Win
|
10/04/18 |
|
| DWA-140 |
A1 |
Win |
08/08/18 |
|
| DWA-140 |
B3 |
Win |
08/08/18 |
|
| DWA-160 |
B2
|
Win |
08/08/18 |
|
| DWA-171 |
A1 |
Mac / Win |
08/08/18 |
Closed: Official Releases |
| DWA-182 |
C1 |
Mac / Win |
08/08/18 |
Closed: Official Releases |
| DWA-182 |
D1 |
Win / Linux / Mac
|
08/08/18 |
Note: Win & Linux are Full Release / Mac is still Patch Release |
| DWA-192 |
Ax |
Mac/Win |
08/08/18 |
Closed: Official Releases |
| DWA-582 |
A2 |
Win |
01/28/19 |
Closed: Official Release |
Mobile / WLAN Routers:
| Model |
Ver. |
Current Status |
Last Updated |
Notes |
| DIR-506L |
A1 |
Under Development |
04/10/18 |
|
Power-Line Networking:
Smart Home Products:
| Model |
Ver. |
Current Status |
Last Updated |
Notes |
| DCH-S150 |
Ax |
v1.23B01 |
06/08/18 |
Closed: Updated through mydlink Home mobile app |
| DCH-S160 |
Ax |
v1.23B03 |
04/10/18 |
Closed: Updated through mydlink Home mobile app. |
| DCH-S220 |
Ax |
v1.23B03 |
04/10/18 |
Closed: Updated through mydlink Home mobile app. |
| DSP-W215 |
Ax |
v1.26B03 |
04/10/18 |
Closed: Updated through mydlink Home mobile app. |
| DSP-W215 |
Bx |
v2.23B02 |
04/10/18 |
Closed: Updated through mydlink Home mobile app
|
DSL Gateway
| Model |
Ver. |
Current Status |
Last Updated |
Notes |
| DSL-2750B |
T1/T2 |
Not Affected |
04/10/18 |
Closed |
| DSL-2750B-SG |
T1 |
Not Affected |
04/10/18 |
Closed |
| DSL-2750B-US |
T1 |
Not Affected |
04/10/18 |
Closed |