PT-2025-30317 · D Link · Dir-817
Patr1Ck
·
Publicado
2025-07-21
·
Atualizado
2025-10-03
·
CVE-2025-7932
CVSS v3.1
8.8
Alta
| Vetor | AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
D-Link DIR‑817L versions up to 1.04B01
Description
A critical issue exists in D-Link DIR‑817L. The
lxmldbc system function within the ssdpcgi file is susceptible to command injection, allowing for remote attacks. The exploit for this issue has been publicly disclosed.Recommendations
Versions prior to 1.04B01: At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
Command Injection
Special Elements Injection
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Identificadores relacionados
Produtos afetados
Dir-817