CNNVD-202508-098 Information

CNNVD ID

CNNVD-202508-098

Related CVE

CVE-2013-10050

• CNNVD Published: 2025-08-01

Description (Chinese)

D-Link DIR-615和D-Link DIR-300都是中国友讯（D-Link）公司的一款无线路由器。 D-Link DIR-300 rev A 1.05版本和D-Link DIR-615 rev D 4.13版本存在安全漏洞，该漏洞源于tools_vct.xgi端点输入清理不足，可能导致远程代码执行。

Description (English)

D-Link DIR-615 and D-Link DIR-300 are both wireless routers of the Chinese company D-Link. D-Link DIR-300 rev A 1.05 and D-Link DIR-615 rev D 4.13 have a security loophole, which stems from inadequate input clearance of the tools vct.xgi endpoint, which may lead to remote code execution.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

友讯

Published

2025-08-01

Last Modified

2026-02-24

References

https://www.exploit-db.com/exploits/25024 https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/linux/ https://www.exploit-db.com/exploits/27428 http://www.s3cur1ty.de/m1adv2013-014 https://web.archive.org/web/20140830203110/ https://www.vulncheck.com/advisories/d-link-legacy-unauth-rce-2 https://access.redhat.com/security/cve/cve-2013-10050