The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent directive to federal agencies and private sector organizations regarding a critical security flaw affecting D-Link routers.
On December 8, 2025, the agency officially added the vulnerability, tracked as CVE-2022-37055, to its Known Exploited Vulnerabilities (KEV) catalog.
This designation confirms that threat actors are currently exploiting this specific flaw in active cyberattacks, signaling a severe risk to networks that rely on these devices.
https://cyberpress.org/d-link-router-bu ... flow-flaw/