CVE-2025-25893 Information

Description

An OS command injection vulnerability was discovered in D-Link DSL-3782 v1.01 via the inIP insPort inePort exsPort exePort and protocol parameters. This vulnerability allows attackers to execute arbitrary operating system (OS) commands via a crafted packet.

Reference

https://github.com/2664521593/mycve/blob/main/CJ_in_D-Link_DSL-3782_2_en.pdf https://github.com/2664521593/mycve/blob/main/CJ_in_D-Link_DSL-3782_2_en.pdf