CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-25895

An OS command injection vulnerability was discovered in D-Link DSL-3782 v1.01 via the public_type parameter. This vulnerability allows attackers to execute arbitrary operating system (OS) commands via a crafted packet.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 24.3%

CVSS Severity

CVSS v3 Score 8.0

References

https://github.com/2664521593/mycve/blob/main/CJ_in_D-Link_DSL-3782_3_en.pdf
https://github.com/2664521593/mycve/blob/main/CJ_in_D-Link_DSL-3782_3_en.pdf

Products affected by CVE-2025-25895

Dlink » Dsl-3782 » Version: N/A

cpe:2.3:h:dlink:dsl-3782:-
Dlink » Dsl-3782 Firmware » Version: 1.01

cpe:2.3:o:dlink:dsl-3782_firmware:1.01

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-25895

Products

Pricing

Contact Us