CNNVD-202506-3741 Information

CNNVD ID

CNNVD-202506-3741

Related CVE

CVE-2025-6896

• CNNVD Published: 2025-06-30

Description (Chinese)

D-Link DI-7300G+是中国友讯（D-Link）公司的一款坚固耐用的企业级智能网关。 D-Link DI-7300G+ 19.12.25A1版本存在命令注入漏洞，该漏洞源于文件wget_test.asp中参数url的错误操作导致os命令注入。

Description (English)

D-Link DI-7300G+ is a strong and durable enterprise smart gateway for the Chinese company D-Link. The D-Link DI-7300G+19.12.25A1 version contains a command-injection loophole, which results from the error of the parameter url in document wget test.asp that led to the Os command injection.

Hazard Level

High

Vulnerability Type

命令注入

Affected Vendor

D-Zero

Published

2025-06-30

Last Modified

2026-02-24

References

https://vuldb.com/?submit.604441 https://github.com/2664521593/mycve/blob/main/D-Link_DI/CJ_IN_DLink_1_en.pdf https://www.dlink.com/ https://vuldb.com/?ctiid.314388 https://vuldb.com/?id.314388 https://access.redhat.com/security/cve/cve-2025-6896