A critical command injection vulnerability has been discovered in several D-Link NAS devices, posing a high-security risk due to lack of authentication safeguards. D-Link has declined to issue security patches for the affected models, which reached end-of-life status in 2020, instead recommending users replace their devices entirely. Experts recommend isolating these devices from public networks and implementing strict access controls.https://www.notebookcheck.net/D-Link-s-solution-to-critical-NAS-vulnerability-buy-new-hardware.915561.0.html
I'm sorry but why on earth would users have their NAS exposed to the internet in the first place? ('private cloud' while out in the wild?)
IMHO: as a whole the industry continues to introduce vulnerable products to be used in vulnerable ways. :(
D-Link routers suck. I retired mine and got a Xiaomi and am never looking back. Super stable and fast connections. Often times I could go on for weeks without needing to restart the router. The D-Link is like dog poo, I often times have to restart the router more than once during a single day!