CNNVD-202508-1840 Information

CNNVD ID

CNNVD-202508-1840

Related CVE

CVE-2025-9026

• CNNVD Published: 2025-08-15

Description (Chinese)

D-Link DIR-860L是中国友讯（D-Link）公司的一款无线路由器。 D-Link DIR-860L 2.04.B04版本存在命令注入漏洞，该漏洞源于htdocs/cgibin文件中ssdpcgi_main函数存在os命令注入。

Description (English)

D-Link DIR-860L is a wireless router of the Chinese company D-Link. The D-Link DIR-860L 2.04.B04 version contains a command-injecting loophole, which originates from the ssdpcgi main function of htdocs/cgibin.

Hazard Level

Medium

Vulnerability Type

命令注入

Affected Vendor

友讯

Published

2025-08-15

Last Modified

2026-02-24

References

https://vuldb.com/?id.320091 https://github.com/i-Corner/cve/issues/17 https://vuldb.com/?submit.629946 https://www.dlink.com/ https://vuldb.com/?ctiid.320091 https://access.redhat.com/security/cve/cve-2025-9026 https://nvd.nist.gov/vuln/detail/CVE-2025-9026