CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-29515

Incorrect access control in the DELT_file.xgi endpoint of D-Link DSL-7740C with firmware DSL7740C.V6.TR069.20211230 allows attackers to modify arbitrary settings within the device's XML database, including the administrator’s password.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 17.0%

CVSS Severity

CVSS v3 Score 9.8

References

https://gist.github.com/stevenyu113228/0bf32385245f71dfe11b0ef77c468392
https://www.dlink.com/en/security-bulletin/

Products affected by CVE-2025-29515

Dlink » Dsl-7740c » Version: N/A

cpe:2.3:h:dlink:dsl-7740c:-
Dlink » Dsl-7740c Firmware » Version: 6.tr069.20211230

cpe:2.3:o:dlink:dsl-7740c_firmware:6.tr069.20211230

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-29515

Products

Pricing

Contact Us