VYPR

Di 7400g\+ Firmware

by Dlink

CVEs (2)

  • CVE-2025-15357MedDec 30, 2025
    risk 0.41cvss 6.3epss 0.04

    A vulnerability was found in D-Link DI-7400G+ 19.12.25A1. This affects an unknown function of the file /msp_info.htm?flag=cmd. The manipulation of the argument cmd results in command injection. The attack can be launched remotely. The exploit has been made public and could be…

  • CVE-2025-9769MedSep 1, 2025
    risk 0.27cvss 4.1epss 0.26

    A security flaw has been discovered in D-Link DI-7400G+ 19.12.25A1. Affected is the function sub_478D28 of the file /mng_platform.asp. The manipulation of the argument addr with the input `echo 12345 > poc.txt` results in command injection. An attack on the physical device is…