Support expired: Security vulnerabilities in D-Link routers remain open
Several software vulnerabilities threaten D-Link's router model DIR-878. Support has been expired for more than four years.
(Image: ZinaidaSopina/Shutterstock.com)
Four security vulnerabilities threaten the D-Link router DIR-878. However, the device has been out of support (End-of-Life, EoL) since the end of January 2021 and has not received any security updates since then. Anyone still using the router should dispose of it at the latest now and replace it with a new model.
Malware code vulnerabilities
The four vulnerabilities (CVE-2025-60672, CVE-2025-60673, CVE-2025-60674, CVE-2025-60676) list the developers in a warning message. An assessment of the threat level is still pending. If attackers successfully exploit the vulnerabilities, they can execute malicious code through various means. After that, devices are generally considered fully compromised.
Videos by heise
Attackers can initiate attacks remotely and without authentication, for example, by sending prepared HTTP requests.
(des)
