Tech & Gadgets

D-Link says it won’t fix a serious security flaw affecting 60,000 older NAS devices


  • A critical vulnerability has been found in multiple D-Link models
  • Because the devices have reached the end of their lifespan, they are not patched
  • Solutions are available, although users are advised to replace the devices

D-Link says it will not fix a critical vulnerability affecting tens of thousands of network attached storage (NAS) devices because they have reached end of life.

Recently, a vulnerability with a severity score of 9.2 (critical) was found in multiple models of D-Link NAS devices. Tracked as CVE-2024-10914, it was described as a command injection exploit that allows threat actors to inject arbitrary shell commands. By sending a specially crafted HTTP GET request to the device, the scammers can remotely cause significant system damage.

Related Articles

Leave a Reply

Your email address will not be published. Required fields are marked *

Back to top button