CVE-2022-29332

Name of the Vulnerable Software and Affected Versions D-LINK DIR-825 AC1200 R2

Description The issue allows an attacker to perform a Directory Traversal attack by using the "../../../../" setting of the FTP server folder. This setting enables the attacker to set the router's root folder for FTP access, thereby allowing access to the entire router file system via the FTP server.

Recommendations For D-LINK DIR-825 AC1200 R2, consider disabling the FTP server until a patch is available to prevent exploitation of the Directory Traversal issue. Restrict access to the FTP server folder to minimize the risk of unauthorized file system access.