• Home Support Forums Security Advisories Shop     English | French
Security Announcement
Announcement > SAP10462
(Non-US) DCS-F5614-L1 : H/W Rev. C1 : Firmware V1.03.038 and lower : Multiple Vulnerabilities Reported
Publication ID: SAP10462
Resolved Status: Partial
Published on: 15 September 2025 2:05 GMT
Last updated on: 16 September 2025 5:47 GMT

 

Overview

 

On July 29, 2025, a third party reported a D-Link DCS-F5614-L1 was accused of havine a number of vulnerabilities.  The DCS-Fxxx Series of cameras are known as a the "Indigenous" Camera family for the India marketplace.  These are not currently offered for sale by D-Link outside India, they a locally sourced and supported by D-Link India Limited. 

 

Device software, also known as fimrware is available form D-Link India support site here: https://security.dlink.co.in/firmware 

 

When D-Link became aware of the reported security issues, we promptly started investigating and developing security patches. Patches were released within 90 days of the vulnerability report.

 

They currently have released the latest firmware for a number of the cameras in the familty, please keep your cameras up to date, and please check for updates as further research is being completed into features, funcationality, and security hardening.

 

D-Link takes network security and user privacy very seriously. We have a dedicated task force and product management team available to address evolving security issues and implement necessary security measures. 

 

Report information  

 

      3rd Party Report   Interally Discovered - Addition research on open issues is still being completed

 

               Report 1:  09/12/2025 :: Hardening of Information from Disclosure

 

 

                                         : Configuration Export feature now requires you to log in first.

                                         : User configuring device cannot download camera settings without proper authorization

 

               Report 2:  09/12/2025 :: Hardening of Sensitive Data Protection

 

                                         : Export settings after login, the file will no longer contain sensitive details such as username or password.


                                         : Only Safe Configuration data will be included

 

 

 

 

 

Affected Models

 

Model

Affected Software Version

Region

Fixed Release

Last Updated

DCS-F5614-L1

v1.03.038 and below

D-Link India

V1.03.039a0340.02i46061.T078.2

09/16/2025

 

Regarding the Security Update for Your D-Link Device

 

Installing software updates is critical in addressing security vulnerabilities in your D-Link devices. D-Link strongly urges all users to install the relevant updates and regularly check for further updates. After downloading the software update, it is essential to ALWAYS validate its success by comparing the software version on your product interface to the software update version.

 

Please note that beta software, beta firmware, or a hot-fix release is still undergoing rigorous testing before its official release. This ensures that the software is of the highest quality and meets our stringent standards. However, it is essential to understand that the user assumes all risk and liability for its use. D-Link does not provide express or implied warranties regarding the suitability or usability of the beta software, beta firmware, or hot-fix release. D-Link will not be liable for any direct, indirect, special, or consequential loss suffered by any party due to their use of the beta firmware, beta software, or hit-fix release.

 

NOTE: Our products have different hardware revisions, so please check your device’s hardware revision before downloading the corresponding firmware update. The hardware revision can be found on the product label next to the serial number or on the device's web interface.