CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-10628

A vulnerability was found in D-Link DIR-852 1.00CN B09. This vulnerability affects unknown code of the file /htdocs/cgibin/hedwig.cgi of the component Web Management Interface. Performing manipulation results in command injection. The attack is possible to be carried out remotely. The exploit has been made public and could be used. This vulnerability only affects products that are no longer supported by the maintainer.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 69.3%

CVSS Severity

CVSS v3 Score 6.3

CVSS v2 Score 6.5

References

https://github.com/i-Corner/cve/issues/31
https://vuldb.com/?ctiid.324658
https://vuldb.com/?id.324658
https://vuldb.com/?submit.650656
https://www.dlink.com/
https://github.com/i-Corner/cve/issues/31

Products affected by CVE-2025-10628

Dlink » Dir-852 » Version: N/A

cpe:2.3:h:dlink:dir-852:-
Dlink » Dir-852 Firmware » Version: 1.00cn_b09

cpe:2.3:o:dlink:dir-852_firmware:1.00cn_b09

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-10628

Products

Pricing

Contact Us