VYPR

DCS-825L

by Dlink

CVEs (5)

  • CVE-2017-11563CriAug 24, 2018
    risk 0.64cvss 9.8epss 0.05

    D-Link EyeOn Baby Monitor (DCS-825L) 1.08.1 has a remote code execution vulnerability. A UDP "Discover" service, which provides multiple functions such as changing the passwords and getting basic information, was installed on the device. A remote attacker can send a crafted UDP…

  • CVE-2017-11564HigAug 24, 2018
    risk 0.58cvss 8.8epss 0.04

    The D-Link EyeOn Baby Monitor (DCS-825L) 1.08.1 has multiple command injection vulnerabilities in the web service framework. An attacker can forge malicious HTTP requests to execute commands; authentication is required before executing the attack.

  • CVE-2018-18442HigDec 20, 2018
    risk 0.49cvss 7.5epss 0.01

    D-Link DCS-825L devices with firmware 1.08 do not employ a suitable mechanism to prevent denial-of-service (DoS) attacks. An attacker can harm the device availability (i.e., live-online video/audio streaming) by using the hping3 tool to perform an IPv4 flood attack. Verified…

  • CVE-2025-55581HigAug 22, 2025
    risk 0.47cvss 7.3epss 0.00

    D-Link DCS-825L firmware version 1.08.01 and possibly prior versions contain an insecure implementation in the mydlink-watch-dog.sh script. The script monitors and respawns the `dcp` and `signalc` binaries without validating their integrity, origin, or permissions. An attacker…

  • CVE-2025-55582MedAug 27, 2025
    risk 0.43cvss 6.6epss 0.00

    D-Link DCS-825L firmware v1.08.01 contains a vulnerability in the watchdog script `mydlink-watch-dog.sh`, which blindly respawns binaries such as `dcp` and `signalc` without verifying integrity, authenticity, or permissions. An attacker with local filesystem access (via physical…