ACTIVELY EXPLOITED3 sources verified·1 min read
By Lyrie Threat Intelligence·4/11/2024
CVE-2024-3272 added to CISA KEV: D-Link Multiple NAS Devices
Status: ✅ Confirmed exploited in the wild
Date added: 2024-04-11
Required action: This vulnerability affects legacy D-Link products. All associated hardware revisions have reached their end-of-life (EOL) or end-of-service (EOS) life cycle and should be retired and replaced per vendor instructions.
Due date: 2024-05-02
Why this matters
D-Link DNS-320L, DNS-325, DNS-327L, and DNS-340L contains a hard-coded credential that allows an attacker to conduct authenticated command injection, leading to remote, unauthorized code execution.
Sources
Lyrie Verdict
Lyrie's autonomous detection layer catches active exploitation primitives at machine speed — closing the gap between disclosure and weaponization that traditional defense simply can't cover.