CNNVD-202510-1132 Information

CNNVD ID

CNNVD-202510-1132

Related CVE

CVE-2025-11488

• CNNVD Published: 2025-10-08

Description (Chinese)

D-Link DIR-852是中国友讯（D-Link）公司的一款路由器。 D-Link DIR-852 20251002及之前版本存在命令注入漏洞，该漏洞源于对文件/HNAP1/的错误操作，可能导致命令注入攻击。

Description (English)

D-Link DIR-852 is a router for the Chinese company D-Link. The D-Link DIR-852 20251002 and previous versions had a command-injecting loophole, which stemmed from an error in the document/HNAP1 and could lead to an order-injection attack.

Hazard Level

Medium

Vulnerability Type

命令注入

Affected Vendor

友讯

Published

2025-10-08

Last Modified

2026-02-24

References

https://vuldb.com/?ctiid.327605 https://vuldb.com/?id.327605 https://vuldb.com/?submit.667505 https://www.dlink.com/ https://www.yuque.com/jh0ng/vmpda6/cqi681wr7vci6kx9