• Home Support Forums Security Advisories Shop     English | French
Security Announcement
Announcement > SAP10414
(non-US) DSL-6740C :: All H/W Revisions :: End-of-Life / End-of-Service :: CVE-2024-11068 - Unauthorized Configuration Access Vulnerability
Publication ID: SAP10414
Resolved Status: Yes
Published on: 12 November 2024 5:54 GMT
Last updated on: 12 November 2024 5:54 GMT

 

 

Overview  

 

The (Non-US Available) DSL-6740C, all hardware revisions, reached their end-of-life ("EOL") /end-of-service-life ("EOS") Life Cycle on January 15, 2024. D-Link US recommends retiring and replacing D-Link devices that have reached EOL/EOS. Please contact your regional office for recommendations (LINK).

As a general policy, when products reach EOS/EOL, they can no longer be supported, and all firmware development for these products ceases.  Please read the information and recommendations below.
 

3rd Party Report information

  
    - Reports provided: 
 

          - Report 1: CVE-2024-11068: Link   Disclosed 11/11/2024

                      CNA   : TWCERT/CC:  9.8 CRITICAL

                                 : CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

                     CWD-648: Incorrect Use of Privileged APIs 

                                 : Author Public Disclosure Link

 

Affected Models

 

Model

Region

Hardware Revision

End of Support

Legacy Website

Last Updated

DSL-6740C

Non-US

All Series H/W Revisions

01/15/2024

 Non-US : No

11/12/2024

 

Recommendation for End-of-Support/End-of-Life Products


From time to time, D-Link decides that some of its products have reached the End of Support ("EOS") or End of Life (“EOL”). D-Link may choose to EOS/EOL a product due to technological evolution, market demands, innovations, product efficiencies based on new technologies, or the product maturing over time and should be replaced by functionally superior technology.

 

For US Consumer

   
If a product has reached the End of Support ("EOS") or End of Life ("EOL"), it is usually not supported or developed further.

 

Typically, D-Link cannot resolve device or firmware issues for these products since all development and customer support have ceased. 

 

D-Link strongly recommends that this product be retired and cautions that further use may risk connected devices. If US consumers continue to use these devices against D-Link's recommendation, please ensure that the device has the most recent firmware, frequently updates its unique password to access its web configuration, and always has WIFI encryption enabled with a unique password.