Shodan
Vulnerabilities
Vulnerable Software
Dlink:  >> Dsl-7740c Firmware  Security Vulnerabilities
CVE-2025-29523
D-Link DSL-7740C with firmware DSL7740C.V6.TR069.20211230 was discovered to contain a command injection vulnerability via the ping6 function.
CVSS Score
7.2
EPSS Score
0.003
Published
2025-08-25
CVE-2025-29520
Incorrect access control in the Maintenance module of D-Link DSL-7740C with firmware DSL7740C.V6.TR069.20211230 allows authenticated attackers with low-level privileges to arbitrarily change the high-privileged account passwords and escalate privileges.
CVSS Score
5.3
EPSS Score
0.0
Published
2025-08-25
CVE-2025-29521
Insecure default credentials for the Adminsitrator account of D-Link DSL-7740C with firmware DSL7740C.V6.TR069.20211230 allows attackers to escalate privileges via a bruteforce attack.
CVSS Score
5.3
EPSS Score
0.001
Published
2025-08-25
CVE-2025-29522
D-Link DSL-7740C with firmware DSL7740C.V6.TR069.20211230 was discovered to contain a command injection vulnerability via the ping function.
CVSS Score
6.5
EPSS Score
0.017
Published
2025-08-25
CVE-2025-29519
A command injection vulnerability in the EXE parameter of D-Link DSL-7740C with firmware DSL7740C.V6.TR069.20211230 allows attackers to execute arbitrary commands via supplying a crafted GET request.
CVSS Score
5.3
EPSS Score
0.016
Published
2025-08-25
CVE-2025-29514
Incorrect access control in the config.xgi function of D-Link DSL-7740C with firmware DSL7740C.V6.TR069.20211230 allows attackers to download the configuration file via providing a crafted web request.
CVSS Score
9.8
EPSS Score
0.001
Published
2025-08-25
CVE-2025-29515
Incorrect access control in the DELT_file.xgi endpoint of D-Link DSL-7740C with firmware DSL7740C.V6.TR069.20211230 allows attackers to modify arbitrary settings within the device's XML database, including the administrator’s password.
CVSS Score
9.8
EPSS Score
0.002
Published
2025-08-25
CVE-2025-29516
D-Link DSL-7740C with firmware DSL7740C.V6.TR069.20211230 was discovered to contain a command injection vulnerability via the backup function.
CVSS Score
7.2
EPSS Score
0.002
Published
2025-08-25
CVE-2025-29517
D-Link DSL-7740C with firmware DSL7740C.V6.TR069.20211230 was discovered to contain a command injection vulnerability via the traceroute6 function.
CVSS Score
6.8
EPSS Score
0.001
Published
2025-08-25
CVE-2020-12774
D-Link DSL-7740C does not properly validate user input, which allows an authenticated LAN user to inject arbitrary command.
CVSS Score
8.2
EPSS Score
0.006
Published
2020-07-22


Products
Pricing
Contact Us

Shodan ® - All rights reserved