• Home Support Forums Security Advisories Shop     English | French
Security Announcement
Announcement > SAP10499
DAP-1525, DHP-W311AV, and multiple DIR-series and GO-series : All H/W Revisions / All F/W Versions :: End-of-Life (EOL) / End-of-Service : EDB-38715 - After-Life Vulnerability Report
Publication ID: SAP10499
Resolved Status: Yes
Published on: 30 January 2026 7:20 GMT
Last updated on: 30 January 2026 8:47 GMT


 

Overview

 

The DAP-1525, DHP-W311AV, and multiple DIR-series and GO-series devices listed below are legacy networking products. All identified models and hardware revisions have reached End of Life (EOL) and End of Service Life (EOS).

 

D-Link US and Canada recommends retiring and replacing devices that have reached EOL or EOS. These products no longer receive technical support, firmware updates, or security remediation.

 

As a general policy, once a product reaches EOS or EOL, all firmware development stops. Review the information and recommendations below before continuing to use these devices.

 

 

Third-Party Report Information

 

Report 1: EDB-38715

Reference: Exploit Database
https://www.exploit-db.com/exploits/38715

Title: Command injection vulnerability affecting legacy D-Link wireless routers and access points

CWE: CWE-78 Improper Neutralization of Special Elements used in an OS Command

 

 

CVSS Scores

This issue is documented in third-party exploit repositories and demonstrates command execution risk through improper input handling. This report does not appear in archived D-Link US or Canada security bulletins.

 

Note:
This report appears in third-party vulnerability databases. It does not appear in archived D-Link security bulletins. All affected devices have reached EOL and EOS. Product resources have been discontinued and no longer receive support. D-Link Systems, Inc. recommends retiring these products and replacing them with supported models.

 

Description

 

EDB-38715 documents a vulnerability affecting multiple legacy D-Link wireless routers and access points. Improper handling of user-supplied input allows command execution under certain conditions. No remediation is available due to product lifecycle status.

 

 

Awareness Reported by

 

Hui Jun Tay :: hui _dot_ jun _dot_ tay _at_ gmail _dot_ com

SEFCOM Laboratories : Link

 

 

Affected Products and Firmware Status

 

 

DAP-1525
  • Hardware Revision: RevA
  • Affected Versions: v1.02 and earlier
  • End of Support and End of Life: 02/28/2018
  • Status: EOL and EOS

 

DHP-W311AV
  • Hardware Revision: RevC
  • Affected Versions: v3.11B01 NA BETA and earlier
  • End of Support and End of Life: 04/27/2018
  • Status: EOL and EOS

 

DIR-300 (Non-US)
  • Hardware Revision: RevB5
  • Affected Versions: v2.15.B01 WW and earlier
  • End of Support and End of Life: 08/31/2020
  • Status: EOL and EOS

 

DIR-456U (Non-US)
  • Hardware Revision: RevA
  • Affected Versions: v1.02b06 and earlier
  • End of Support and End of Life: 12/31/2014
  • Status: EOL and EOS

 

DIR-600
  • Hardware Revision: RevB
  • Affected Versions: v2.18 and earlier
  • Last Available Firmware: v2.18_Jimo RevB
  • End of Support and End of Life: 10/01/2016
  • Status: EOL and EOS

 

DIR-600L
  • Hardware Revision: RevB
  • Affected Versions: v2.17 and earlier
  • End of Support and End of Life: 12/01/2016
  • Status: EOL and EOS

 

DIR-629 (Non-US)
  • Hardware Revision: RevA
  • Affected Versions: v1.03.B01_CN and earlier
  • End of Support and End of Life: 08/30/2016
  • Status: EOL and EOS

 

DIR-803
  • Hardware Revision: RevA
  • Affected Versions: v1.04.B02 and earlier
  • End of Support and End of Life: 03/01/2016
  • Status: EOL and EOS

 

DIR-816L
  • Hardware Revision: RevB
  • Affected Versions: v2.06.B09_BETA and earlier
  • End of Support and End of Life: 03/01/2016
  • Status: EOL and EOS

 

DIR-818L (Non-US)
  • Hardware Revision: RevA
  • Affected Versions: v1.05.B01_EN and earlier
  • End of Support and End of Life: 05/01/2017
  • Status: EOL and EOS

 

DIR-820LW (Non-US)
  • Hardware Revision: RevB
  • Affected Versions: v2.03.B01_TC and earlier
  • End of Support and End of Life: 03/01/2016
  • Status: EOL and EOS

 

DIR-845L (Non-US)
  • Affected Versions: FW101KRb03 and earlier
  • End of Support and End of Life: 03/01/2016
  • Status: EOL and EOS

 

DIR-850L
  • Hardware Revision: RevA
  • Affected Versions: v1.13B01_HOTFIX and earlier
  • End of Support and End of Life: 08/31/2018
  • Status: EOL and EOS

 

DIR-850LKR (Non-US)
  • Hardware Revision: All
  • Affected Versions: FW115KRb01 and earlier
  • End of Support and End of Life: 08/31/2018
  • Status: EOL and EOS

 

DIR-860L
  • Hardware Revision: RevB
  • Affected Versions: v2.04.B04_ic5b_HOTFIX and earlier
  • End of Support and End of Life: 05/12/2018
  • Status: EOL and EOS

 

DIR-865L
  • Hardware Revision: RevA
  • Affected Versions: v1.08B01 and earlier
  • End of Support and End of Life: 02/01/2016
  • Status: EOL and EOS

 

DIR-868L
  • Affected Versions: FW203b01 and earlier
  • End of Support and End of Life: 11/01/2016
  • Status: EOL and EOS

 

DIR-868L-ES
  • Hardware Revision: RevA
  • Affected Versions: v1.00B02_DH and earlier
  • End of Support and End of Life: 11/01/2016
  • Status: EOL and EOS

 

GO-RT-AC750 (Non-US)
  • Hardware Revision: RevB
  • Affected Versions: v2.00 and earlier
  • End of Support and End of Life: 02/29/2016
  • Status: EOL and EOS

Reports affecting older or legacy firmware are not accepted. EOL and EOS status means support and service have ended, and no security updates will be released.

 

Affected Models Summary

 

 

Model

 

Region

 

Hardware Revision

 

End of Support

 

Legacy Website

 

Last Updated

DAP-1525

All

RevA

02/28/2018

Yes

01/30/2026

DHP-W311AV

All

RevC

04/27/2018

Yes

01/30/2026

DIR-300

Non-US

RevB5

08/31/2020

Yes

01/30/2026

DIR-456U

Non-US

RevA

12/31/2014

Yes

01/30/2026

DIR-600

All

RevB

10/01/2016

Yes

01/30/2026

DIR-600L

All

RevB

12/01/2016

Yes

01/30/2026

DIR-629

Non-US

RevA

08/30/2016

Yes

01/30/2026

DIR-803

All

RevA

03/01/2016

Yes

01/30/2026

DIR-816L

All

RevB

03/01/2016

Yes

01/30/2026

DIR-818L

Non-US

RevA

05/01/2017

Yes

01/30/2026

DIR-820LW

Non-US

RevB

03/01/2016

Yes

01/30/2026

DIR-845L

Non-US

All

03/01/2016

Yes

01/30/2026

DIR-850L

All

RevA

08/31/2018

Yes

01/30/2026

DIR-850LKR

Non-US

All

08/31/2018

Yes

01/30/2026

DIR-860L

All

RevB

05/12/2018

Yes

01/30/2026

DIR-865L

All

RevA

02/01/2016

Yes

01/30/2026

DIR-868L

All

All

11/01/2016

Yes

01/30/2026

DIR-868L-ES

All

RevA

11/01/2016

Yes

01/30/2026

GO-RT-AC750

Non-US

RevB

02/29/2016

Yes

01/30/2026

 

 

Recommendations for End of Support and End of Life Products

 

D-Link periodically designates products as EOS or EOL due to technology changes, market demand, or lifecycle maturity. Products in this status should be replaced with newer models offering improved functionality and active support.

 

 

Guidance for US and Canada Consumers

 
  • Products that have reached EOS or EOL no longer receive technical support, firmware updates, or security remediation.
  • Continued use of EOL and EOS products increases security risk to connected networks and devices.
  • D-Link strongly advises discontinuing use of these products.

 

 

Security Reports for EOL and EOS Devices

 
  • D-Link does not accept or validate vulnerability reports for EOL or EOS products.
  • No firmware updates or hotfixes will be released.
  • The last available firmware appears on the legacy site for reference only:
    https://legacy.us.dlink.com/
  • Continued use of EOL or EOS devices occurs at the user’s own risk.