VYPR

DIR-825

by Dlink

CVEs (23)

  • CVE-2020-10215Mar 7, 2020
    risk 0.00cvss epss 0.06

    An issue was discovered on D-Link DIR-825 Rev.B 2.10 devices. They allow remote attackers to execute arbitrary commands via the dns_query_name parameter in a dns_query.cgi POST request. TRENDnet TEW-632BRP 1.010B32 is also affected.

  • CVE-2019-9123Feb 25, 2019
    risk 0.00cvss epss 0.02

    An issue was discovered on D-Link DIR-825 Rev.B 2.10 devices. The "user" account has a blank password.

  • CVE-2019-9126Feb 25, 2019
    risk 0.00cvss epss 0.02

    An issue was discovered on D-Link DIR-825 Rev.B 2.10 devices. There is an information disclosure vulnerability via requests for the router_info.xml document. This will reveal the PIN code, MAC address, routing table, firmware version, update time, QOS information, LAN…

Page 2 of 2