• Home Support Forums Security Advisories Shop     English | French
Security Announcement
Announcement > SAP10491
CVE-2024-42813 : Legacy Access Points and Routers : End-of-Life (EoL) / End-of-Service (EoS) : Vulnerability Report
Publication ID: SAP10491
Resolved Status: Yes
Published on: 29 January 2026 9:24 GMT
Last updated on: 2 February 2026 7:12 GMT

Overview

 

The DAP-1525 and multiple DIR-series and GO-series router products listed below are legacy networking devices. All identified models and hardware revisions have reached End of Life (EOL) and End of Service Life (EOS).

 

 

D-Link US and Canada recommends retiring and replacing devices that have reached EOL or EOS. These products no longer receive technical support, firmware updates, or security remediation.

 

 

As a general policy, once a product reaches EOS or EOL, all firmware development stops. Review the information and recommendations below before continuing to use these devices.

 

 

Third-Party Report Information

 

Report 1: CVE-2024-42813

Reference: Public vulnerability databases such as NVD

Title: Improper input handling vulnerability affecting legacy D-Link wireless routers and access points

CWE: CWE-78 Improper Neutralization of Special Elements used in an OS Command

 

CVSS Scores

Public vulnerability databases rate this issue as high severity due to network-accessible attack surfaces and insufficient input validation. This CVE does not appear in archived D-Link US or Canada security advisories.

 

Note:
This CVE appears in public vulnerability databases. It does not appear in archived D-Link security bulletins. All affected devices have reached EOL and EOS. Product resources have been discontinued and no longer receive support. D-Link Systems, Inc. recommends retiring these products and replacing them with supported models.

 

Description

CVE-2024-42813 describes a vulnerability affecting multiple legacy D-Link wireless access points and routers. The issue involves improper handling of user-supplied input, which exposes affected devices to command execution risk by authenticated or adjacent attackers. No remediation is available due to lifecycle status.

  

Awareness Reported by

Hui Jun Tay :: hui _dot_ jun _dot_ tay _at_ gmail _dot_ com
SEFCOM Laboratories : Link
 

 

Affected Products and Firmware Status


DAP-1525

  • Hardware Revision: RevA

  • Affected Versions: v1.02 and earlier

  • End of Support and End of Life: 02/28/2018

  • Status: EOL and EOS


DIR-300 (Non-US)

  • Hardware Revision: RevB5

  • Affected Versions: v2.15.B01 WW and earlier

  • End of Life: 08/31/2020

  • Status: EOL and EOS


DIR-456U (Non-US)

  • Hardware Revision: RevA

  • Affected Versions: v1.02b06 and earlier

  • End of Support and End of Life: 12/31/2014

  • Status: EOL and EOS


DIR-600

  • Hardware Revision: RevB

  • Affected Versions: v2.18 and earlier

  • Last Available Firmware: v2.18_Jimo RevB

  • End of Support and End of Life: 10/01/2016

  • Status: EOL and EOS


DIR-600L

  • Hardware Revision: RevB

  • Affected Versions: v2.17 and earlier

  • End of Support and End of Life: 12/01/2016

  • Status: EOL and EOS


DIR-629 (Non-US)

  • Hardware Revision: RevA

  • Affected Versions: v1.03.B01_CN and earlier

  • End of Support and End of Life: 08/30/2016

  • Status: EOL and EOS

DIR-645

  • Hardware Revision: RevA

  • Affected Versions: v1.06B01 and earlier

  • End of Support and End of Life: 12/31/2018

  • Status: EOL and EOS

DIR-803

  • Hardware Revision: RevA

  • Affected Versions: v1.04.B02 and earlier

  • End of Support and End of Life: 03/01/2016

  • Status: EOL and EOS

DIR-815

  • Hardware Revision: RevB

  • Affected Versions: v2.07.B01_HOTFIX and earlier

  • End of Support and End of Life: 12/29/2017

  • Status: EOL and EOS

DIR-816L

  • Hardware Revision: RevB

  • Affected Versions: v2.06.B09_BETA and earlier

  • End of Support and End of Life: 03/01/2016

  • Status: EOL and EOS

DIR-817LW

  • Hardware Revision: RevA

  • Affected Versions: v1.04B01_HOTFIX and earlier

  • End of Support and End of Life: 01/31/2018

  • Status: EOL and EOS

DIR-818L (Non-US)

  • Hardware Revision: RevA

  • Affected Versions: v1.05.B01_EN and earlier

  • End of Support and End of Life: 12/15/2019

  • Status: EOL and EOS

DIR-818LW

  • Hardware Revision: RevB

  • Affected Versions: v2.05.B01 and earlier

  • End of Support and End of Life: 05/01/2017

  • Status: EOL and EOS

DIR-820LW (Non-US)

  • Hardware Revision: RevB

  • Affected Versions: v2.03.B01_TC and earlier

  • End of Support and End of Life: 03/01/2016

  • Status: EOL and EOS

DIR-845L (Non-US)

  • Affected Versions: FW101KRb03 and earlier

  • End of Support and End of Life: 03/01/2016

  • Status: EOL and EOS

DIR-850L

  • Hardware Revision: RevA

  • Affected Versions: v1.13B01_HOTFIX and earlier

  • End of Support and End of Life: 08/31/2018

  • Status: EOL and EOS

DIR-850LKR (Non-US)

  • Affected Versions: FW115KRb01 and earlier

  • End of Support and End of Life: 08/31/2018

  • Status: EOL and EOS

DIR-860L

  • Hardware Revision: RevB

  • Affected Versions: v2.04.B04_ic5b_HOTFIX and earlier

  • End of Support and End of Life: 05/12/2018

  • Status: EOL and EOS

DIR-865L

  • Hardware Revision: RevA

  • Affected Versions: v1.08B01 and earlier

  • End of Support and End of Life: 02/01/2016

  • Status: EOL and EOS

DIR-868L (RevA, ES)

  • Hardware Revision: RevA

  • Affected Versions: v1.00B02_DH and earlier

  • End of Support and End of Life: 02/01/2016

  • Status: EOL and EOS

DIR-868L (RevA)

  • Hardware Revision: RevA

  • Affected Versions: v1.10.FB.B04 and earlier

  • End of Support and End of Life: 11/01/2016

  • Status: EOL and EOS

DIR-868L (RevB)

  • Hardware Revision: RevB

  • Affected Versions: v2.03B01 and earlier

  • End of Support and End of Life: 11/01/2016

  • Status: EOL and EOS

DIR-880L

  • Hardware Revision: RevA

  • Affected Versions: v1.03WWb11 and earlier

  • End of Support and End of Life: 01/01/2019

  • Status: EOL and EOS

DIR-890L

  • Hardware Revision: RevA

  • Affected Versions: v1.07.B09 and earlier

  • End of Support and End of Life: 01/01/2019

  • Status: EOL and EOS

GO-RT-AC750 (Non-US)

  • Hardware Revision: RevB

  • Affected Versions: v2.00 and earlier

  • End of Support and End of Life: 02/29/2016

  • Status: EOL and EOS

Reports affecting older or legacy firmware are not accepted. EOL and EOS status means support and service have ended, and no security updates will be released.

 

Affected Models Summary

 

Model Region Hardware Revision End of Support Legacy Website Last Updated
DAP-1525 All Regions RevA 02/28/2018 Yes 01/30/2026
DIR-300 Non-US RevB5 08/31/2020 Yes 01/30/2026
DIR-456U Non-US RevA 12/31/2014 Yes 01/30/2026
DIR-600 All Regions RevB 10/01/2016 Yes 01/30/2026
DIR-600L All Regions RevB 12/01/2016 Yes 01/30/2026
DIR-629 Non-US RevA 08/30/2016 Yes 01/30/2026
DIR-645 All Regions RevA 12/31/2018 Yes 01/30/2026
DIR-803 All Regions RevA 03/01/2016 Yes 01/30/2026
DIR-815 All Regions RevB 12/29/2017 Yes 01/30/2026
DIR-816L All Regions RevB 03/01/2016 Yes 01/30/2026
DIR-817LW All Regions RevA 01/31/2018 Yes 01/30/2026
DIR-818L Non-US RevA 12/15/2019 Yes 01/30/2026
DIR-818LW All Regions RevB 05/01/2017 Yes 01/30/2026
DIR-820LW Non-US RevB 03/01/2016 Yes 01/30/2026
DIR-845L Non-US n/a 03/01/2016 Yes 01/30/2026
DIR-850L All Regions RevA 08/31/2018 Yes 01/30/2026
DIR-850LKR Non-US n/a 08/31/2018 Yes 01/30/2026
DIR-860L All Regions RevB 05/12/2018 Yes 01/30/2026
DIR-865L All Regions RevA 02/01/2016 Yes 01/30/2026
DIR-868L_ES All Regions RevA 02/01/2016 Yes 01/30/2026
DIR-868L All Regions RevA 11/01/2016 Yes 01/30/2026
DIR-868L All Regions RevB 11/01/2016 Yes 01/30/2026
DIR-880L All Regions RevA 01/01/2019 Yes 01/30/2026
DIR-890L All Regions RevA 01/01/2019 Yes 01/30/2026
GO-RT-AC750 Non-US RevB 02/29/2016 Yes 01/30/2026

 

Recommendations for End of Support and End of Life Products

 

D-Link periodically designates products as EOS or EOL due to technology changes, market demand, or lifecycle maturity. Products in this status should be replaced with newer models offering improved functionality and active support.

 

Guidance for US and Canada Consumers

 

  • Products that have reached EOS or EOL no longer receive technical support, firmware updates, or security remediation.

  • Continued use of EOL and EOS products increases security risk to connected networks and devices.

  • D-Link strongly advises discontinuing use of these products.

 

Security Reports for EOL and EOS Devices

 

  • D-Link does not accept or validate vulnerability reports for EOL or EOS products.

  • No firmware updates or hotfixes will be released.

  •  The last available firmware appears on the legacy site for reference only:
    https://legacy.us.dlink.com/

  • Continued use of EOL or EOS devices occurs at the user’s own risk.