Dlink: >> Di-7400g+ >> v2.a1 Security Vulnerabilities
A security flaw has been discovered in D-Link DI-7400G+ 19.12.25A1. Affected is the function sub_478D28 of the file /mng_platform.asp. The manipulation of the argument addr with the input `echo 12345 > poc.txt` results in command injection. An attack on the physical device is feasible. The exploit has been released to the public and may be exploited.
CVSS Score
4.1
EPSS Score
0.002
Published
2025-09-01