Overview
The DIR-615, DIR-632, DIR-825KR, and EBR-2310 are legacy networking devices listed below. All identified models and hardware revisions have reached End of Life (EOL) and End of Service Life (EOS).
D-Link US and Canada recommends retiring and replacing devices that have reached EOL or EOS. These products no longer receive technical support, firmware updates, or security remediation.
As a general policy, once a product reaches EOS or EOL, all firmware development stops. Review the information and recommendations below before continuing to use these devices.
Third-Party Report Information
Report 1: CVE-2025-6121
Reference: Public vulnerability databases such as NVD
Title: Improper input handling vulnerability affecting legacy D-Link routers
CWE: CWE-78 Improper Neutralization of Special Elements used in an OS Command
CVSS Scores
Public vulnerability databases list this issue with elevated severity due to network-accessible attack vectors and insufficient input validation. This CVE does not appear in archived D-Link US or Canada security bulletins.
Note:
This CVE appears in public vulnerability databases. It does not appear in archived D-Link security bulletins. The affected devices have reached EOL and EOS. Product resources have been discontinued and no longer receive support. D-Link Systems, Inc. recommends retiring these products and replacing them with supported models.
Description
CVE-2025-6121 describes a vulnerability affecting multiple legacy D-Link router products. Improper handling of user-supplied input may allow command execution under certain conditions. No remediation is available due to product lifecycle status.
Awareness Reported by
Hui Jun Tay :: hui _dot_ jun _dot_ tay _at_ gmail _dot_ com
SEFCOM Laboratories : Link
Affected Products and Firmware Status
DIR-615
- Hardware Revision: RevE
- Affected Versions: v5.14B01 and earlier
- Last Available Firmware: v5.14B01_patch
- End of Support and End of Life: 01/31/2018
- Status: EOL and EOS
DIR-632
- Hardware Revision: RevA
- Affected Versions: v1.03 and earlier
- Last Available Firmware: v1.03
- End of Support and End of Life: 09/01/2015
- Status: EOL and EOS
DIR-825KR (Non-US)
- Affected Versions: FW202SSB15beta03 and earlier
- End of Support and End of Life: 09/01/2015
- Status: EOL and EOS
- Note: KR model status requires confirmation with D-Link Corporation.
EBR-2310
- Hardware Revision: RevC
- Affected Versions: v3.01 and earlier
- End of Support and End of Life: 12/01/2016
- Status: EOL and EOS
Reports affecting older or legacy firmware are not accepted. EOL and EOS status means support and service have ended, and no security updates will be released.
Affected Models Summary
|
Model
|
Region
|
Hardware Revision
|
End of Support
|
Legacy Website
|
Last Updated
|
|
DIR-615
|
All Regions
|
RevE
|
01/31/2018
|
Yes
|
01/30/2026
|
|
DIR-632
|
All Regions
|
RevA
|
09/01/2015
|
Yes
|
01/30/2026
|
|
DIR-825KR
|
Non-US
|
n/a
|
09/01/2015
|
Yes
|
01/30/2026
|
|
EBR-2310
|
All Regions
|
RevC
|
12/01/2016
|
Yes
|
01/30/2026
|
Recommendations for End of Support and End of Life Products
D-Link periodically designates products as EOS or EOL due to technology changes, market demand, or lifecycle maturity. Products in this status should be replaced with newer models offering improved functionality and active support.
Guidance for US and Canada Consumers
- Products that have reached EOS or EOL no longer receive technical support, firmware updates, or security remediation.
- Continued use of EOL and EOS products increases security risk to connected networks and devices.
- D-Link strongly advises discontinuing use of these products.
Security Reports for EOL and EOS Devices
- D-Link does not accept or validate vulnerability reports for EOL or EOS products.
- No firmware updates or hotfixes will be released.
- The last available firmware appears on the legacy site for reference only:
https://legacy.us.dlink.com/
- Continued use of EOL or EOS devices occurs at the user’s own risk.