CNNVD-202508-095 Information
CNNVD ID
CNNVD-202508-095
Related CVE
- CNNVD Published: 2025-08-01
Description (Chinese)
D-Link DIR-600和D-Link DIR-300 rev B都是中国友讯(D-Link)公司的一款无线路由器。 D-Link DIR-300 rev B和D-Link DIR-600 2.13及之前版本和2.14b01及之前版本存在安全漏洞,该漏洞源于command.php端点输入处理不当,可能导致远程代码执行。
Description (English)
D-Link DIR-600 and D-Link DIR-300 rev B are both a wireless router of the Chinese company D-Link. There is a security loophole in D-Link DIR-300 rev B and D-Link DIR-600 2.13 and previous and 2.14b01 and previous versions, which results from inappropriate processing of the command.php endpoint input, which may lead to remote code execution.
Hazard Level
Low
Vulnerability Type
其他
Affected Vendor
友讯
Published
2025-08-01
Last Modified
2026-02-24
References
https://www.exploit-db.com/exploits/27528 https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/linux/ https://www.vulncheck.com/advisories/d-link-legacy-unauth-rce http://www.s3cur1ty.de/m1adv2013-003 https://web.archive.org/web/20131022221648/ https://www.exploit-db.com/exploits/24453 https://access.redhat.com/security/cve/cve-2013-10048
Share on: