CNNVD-202512-2175 Information

CNNVD ID

CNNVD-202512-2175

Related CVE

CVE-2025-14528

• CNNVD Published: 2025-12-11

Description (Chinese)

D-Link DIR-803是中国友讯（D-Link）公司的一款无线路由器。 D-Link DIR-803 1.04及之前版本存在安全漏洞，该漏洞源于组件Configuration Handler的文件/getcfg.php中参数AUTHORIZED_GROUP的错误操作，可能导致信息泄露。

Description (English)

D-Link DIR-803 is a wireless router of the Chinese company D-Link. There is a security loophole in D-Link DIR-803 1.04 and earlier versions, which stems from the error of the parameter AUTHORIZED GRUP in the file/getcfg.php of the component Configuration Handler, which could lead to the disclosure of information.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

友讯

Published

2025-12-11

Last Modified

2026-02-24

References

https://github.com/Madgeaaaaa/MY_VULN_2/blob/main/D-Link/vuln-2/DIR-803%20Authentication%20Bypass.md https://github.com/Madgeaaaaa/MY_VULN_2/blob/main/D-Link/vuln-2/DIR-803%20Authentication%20Bypass.md#poc https://vuldb.com/?ctiid.335869 https://vuldb.com/?id.335869 https://vuldb.com/?submit.703150 https://www.dlink.com/