CVE-2025-34253
- EPSS 0.02%
- Veröffentlicht 16.10.2025 18:53:49
- Zuletzt bearbeitet 30.10.2025 16:11:40
D-Link Nuclias Connect firmware versions <= 1.3.1.4 contain a stored cross-site scripting (XSS) vulnerability due to improper sanitization of the 'Network' field when editing the configuration, creating a profile, and adding a network. An authenticat...
CVE-2025-34255
- EPSS 0.05%
- Veröffentlicht 16.10.2025 18:52:59
- Zuletzt bearbeitet 30.10.2025 16:06:51
D-Link Nuclias Connect firmware versions <= 1.3.1.4 contain an observable response discrepancy vulnerability. The application's 'Forgot Password' endpoint returns distinct JSON responses depending on whether the supplied email address is associated w...
CVE-2025-34254
- EPSS 0.05%
- Veröffentlicht 16.10.2025 18:52:08
- Zuletzt bearbeitet 30.10.2025 16:07:47
D-Link Nuclias Connect firmware versions <= 1.3.1.4 contain an observable response discrepancy vulnerability. The application's 'Login' endpoint returns distinct JSON responses depending on whether the supplied username is associated with an existing...