CNNVD-202506-3337 Information
CNNVD ID
CNNVD-202506-3337
Related CVE
- CNNVD Published: 2025-06-26
Description (Chinese)
D-Link DSL-2730U和D-Link DSL-2750E都是中国友讯(D-Link)公司的一款路由器。 D-Link DSL-2730U和D-Link DSL-2750E存在安全漏洞,该漏洞源于对文件/cgi-bin/webproc中参数getpage的错误操作,导致路径遍历攻击。
Description (English)
D-Link DSL-2730U and D-Link DSL-2750E are all routers of the Chinese company D-Link. There is a security loophole in D-Link DSL-2730U and D-Link DSL-2750E, which is the result of a mishandling of the getpage of the parameters in the document/cgi-bin/webproc, leading to a path attack.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
友讯
Published
2025-06-26
Last Modified
2026-02-24
References
https://github.com/threat9/routersploit/blob/master/routersploit/modules/exploits/routers/dlink/dsl_2730_2750_path_traversal.py https://www.dlink.com https://www.exploit-db.com/exploits/40735 https://vulncheck.com/advisories/dlink-dsl-routers-path-traversal-file-read https://access.redhat.com/security/cve/cve-2025-34048
Share on: