D-link

Dsl-7740c

8 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2025-29514

Exploit
  • EPSS 0.09%
  • Published 25.08.2025 14:15:30
  • Last modified 02.09.2025 18:17:12

Incorrect access control in the config.xgi function of D-Link DSL-7740C with firmware DSL7740C.V6.TR069.20211230 allows attackers to download the configuration file via providing a crafted web request.

9.8

CVE-2025-29515

Exploit
  • EPSS 0.21%
  • Published 25.08.2025 14:15:30
  • Last modified 02.09.2025 18:17:07

Incorrect access control in the DELT_file.xgi endpoint of D-Link DSL-7740C with firmware DSL7740C.V6.TR069.20211230 allows attackers to modify arbitrary settings within the device's XML database, including the administrator’s password.

7.2

CVE-2025-29516

Exploit
  • EPSS 0.27%
  • Published 25.08.2025 14:15:30
  • Last modified 02.09.2025 18:17:00

D-Link DSL-7740C with firmware DSL7740C.V6.TR069.20211230 was discovered to contain a command injection vulnerability via the backup function.

5.3

CVE-2025-29519

Exploit
  • EPSS 1.85%
  • Published 25.08.2025 00:00:00
  • Last modified 02.09.2025 18:16:47

A command injection vulnerability in the EXE parameter of D-Link DSL-7740C with firmware DSL7740C.V6.TR069.20211230 allows attackers to execute arbitrary commands via supplying a crafted GET request.

5.3

CVE-2025-29520

Exploit
  • EPSS 0.06%
  • Published 25.08.2025 00:00:00
  • Last modified 02.09.2025 18:16:39

Incorrect access control in the Maintenance module of D-Link DSL-7740C with firmware DSL7740C.V6.TR069.20211230 allows authenticated attackers with low-level privileges to arbitrarily change the high-privileged account passwords and escalate privileg...

5.3

CVE-2025-29521

Exploit
  • EPSS 0.1%
  • Published 25.08.2025 00:00:00
  • Last modified 02.09.2025 18:16:29

Insecure default credentials for the Adminsitrator account of D-Link DSL-7740C with firmware DSL7740C.V6.TR069.20211230 allows attackers to escalate privileges via a bruteforce attack.

6.5

CVE-2025-29522

Exploit
  • EPSS 1.95%
  • Published 25.08.2025 00:00:00
  • Last modified 02.09.2025 18:16:23

D-Link DSL-7740C with firmware DSL7740C.V6.TR069.20211230 was discovered to contain a command injection vulnerability via the ping function.

7.2

CVE-2025-29523

Exploit
  • EPSS 0.32%
  • Published 25.08.2025 00:00:00
  • Last modified 01.10.2025 19:59:43

D-Link DSL-7740C with firmware DSL7740C.V6.TR069.20211230 was discovered to contain a command injection vulnerability via the ping6 function.