CNNVD-202510-3968 Information

Oct 29, 2025 cve

CNNVD ID

CNNVD-202510-3968

CVE-2018-25120

CNNVD Published: 2025-10-29

Description (Chinese)

D-Link DNS-343 ShareCenter是中国友讯（D-Link）公司的一个网络存储设备。 D-Link DNS-343 ShareCenter 1.05及之前版本存在安全漏洞，该漏洞源于Mail Test功能中对输入验证不足，可能导致远程命令执行攻击。

Description (English)

D-Link DNS-343 ShareCenter is a network storage facility for D-Link. The D-Link DNS-343 ShareCenter 1.05 and previous versions had a security loophole, which stemmed from the lack of input validation in the Mail Test function and could lead to a remote command execution attack.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

友讯

Published

2025-10-29

Last Modified

2026-02-24

References

https://www.exploit-db.com/exploits/43845 https://www.vulncheck.com/advisories/dlink-dns343-sharecenter-command-injection-via-goform-mail-test https://qkl.seebug.org/vuldb/ssvid-97088 https://github.com/jamesbercegay/advisories/blob/master/%5BGTSA-00128%5D%20D-Link%20DNS-343%20ShareCenter%201.05%20Remote%20Root.txt https://www.dlink.com/al/sq/products/dns-343-sharecenter-4-bay-network-storage-enclosure https://access.redhat.com/security/cve/cve-2018-25120

Share on: