D-Link Dap-2695 vulnerabilities

CVE-2025-12295 [MEDIUM] CWE-345 CVE-2025-12295: A weakness has been identified in D-Link DAP-2695 2.00RC13. The affected element is the function sub A weakness has been identified in D-Link DAP-2695 2.00RC13. The affected element is the function sub_40C6B8 of the component Firmware Update Handler. Executing manipulation can lead to improper verification of cryptographic signature. The attack can be launched remotely. Attacks of this nature are highly complex. The exploitability is described as d

CVE-2025-12296 [MEDIUM] CWE-77 CVE-2025-12296: A security vulnerability has been detected in D-Link DAP-2695 2.00RC13. The impacted element is the A security vulnerability has been detected in D-Link DAP-2695 2.00RC13. The impacted element is the function sub_4174B0 of the component Firmware Update Handler. The manipulation leads to os command injection. The attack may be initiated remotely. The exploit has been disclosed publicly and may be used. This vulnerability only affects products that ar

CVE-2025-11665 [MEDIUM] CWE-77 CVE-2025-11665: A vulnerability was detected in D-Link DAP-2695 2.00RC131. This affects the function fwupdater_main A vulnerability was detected in D-Link DAP-2695 2.00RC131. This affects the function fwupdater_main of the file rgbin of the component Firmware Update Handler. Performing manipulation results in os command injection. The attack may be initiated remotely. This vulnerability only affects products that are no longer supported by the maintainer.

CVE-2025-4859 [MEDIUM] CWE-79 CVE-2025-4859: A vulnerability was found in D-Link DAP-2695 120b36r137_ALL_en_20210528. It has been rated as proble A vulnerability was found in D-Link DAP-2695 120b36r137_ALL_en_20210528. It has been rated as problematic. This issue affects some unknown processing of the file /adv_macbypass.php of the component MAC Bypass Settings Page. The manipulation of the argument f_mac leads to cross site scripting. The attack may be initiated remotely. The exploit has been d

CVE-2025-4858 [MEDIUM] CWE-79 CVE-2025-4858: A vulnerability was found in D-Link DAP-2695 120b36r137_ALL_en_20210528. It has been declared as pro A vulnerability was found in D-Link DAP-2695 120b36r137_ALL_en_20210528. It has been declared as problematic. This vulnerability affects unknown code of the file /adv_arpspoofing.php of the component ARP Spoofing Prevention Page. The manipulation of the argument harp_mac leads to cross site scripting. The attack can be initiated remotely. The exploit h

CVE-2025-4860 [MEDIUM] CWE-79 CVE-2025-4860: A vulnerability classified as problematic has been found in D-Link DAP-2695 120b36r137_ALL_en_202105 A vulnerability classified as problematic has been found in D-Link DAP-2695 120b36r137_ALL_en_20210528. Affected is an unknown function of the file /adv_dhcps.php of the component Static Pool Settings Page. The manipulation of the argument f_mac leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed