CNNVD-202510-2751 Information

Oct 21, 2025 cve

CNNVD ID

CNNVD-202510-2751

CVE-2025-60344

CNNVD Published: 2025-10-21

Description (Chinese)

D-Link DSR-150是中国友讯（D-Link）公司的一款统一服务路由器。 D-Link DSR-150 v1.09B32_WW版本存在安全漏洞，该漏洞源于未经身份验证的本地文件包含漏洞，可能导致远程攻击者获取明文敏感配置文件。

Description (English)

D-Link DSR-150 is a unified service router for the Chinese company D-Link. The D-Link DSR-150 v1.09B32 WW version has a security loophole, which stems from the presence of loopholes in uncertified local documents, which may lead to remote assailants obtaining explicit sensitive profiles.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

友讯

Published

2025-10-21

Last Modified

2026-02-24

References

https://github.com/fyoozr/D-Link-DSR-N250-LFI-Vulnerability/ https://github.com/fyoozr/vulnerability-research/tree/main/CVE-2025-60344 https://access.redhat.com/security/cve/cve-2025-60344

Share on: