D-Link Di-7400G vulnerabilities
2 known vulnerabilities affecting d-link/di-7400g.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
MEDIUM1LOW1
Vulnerabilities
Page 1 of 1
CVE-2025-15357MEDIUMCVSS 5.3v19.12.25A12025-12-30
CVE-2025-15357 [MEDIUM] CWE-74 CVE-2025-15357: A vulnerability was found in D-Link DI-7400G+ 19.12.25A1. This affects an unknown function of the fi
A vulnerability was found in D-Link DI-7400G+ 19.12.25A1. This affects an unknown function of the file /msp_info.htm?flag=cmd. The manipulation of the argument cmd results in command injection. The attack can be launched remotely. The exploit has been made public and could be used.
cvelistv5nvd
CVE-2025-9769LOWCVSS 2.4v19.12.25A12025-09-01
CVE-2025-9769 [LOW] CWE-74 CVE-2025-9769: A security flaw has been discovered in D-Link DI-7400G+ 19.12.25A1. Affected is the function sub_478
A security flaw has been discovered in D-Link DI-7400G+ 19.12.25A1. Affected is the function sub_478D28 of the file /mng_platform.asp. The manipulation of the argument addr with the input `echo 12345 > poc.txt` results in command injection. An attack on the physical device is feasible. The exploit has been released to the public and may be exploited.
cvelistv5nvd