CVE-2025-34125P2CRITICALCVSS 9.3PoCv1.05B012025-07-16
CVE-2025-34125 [CRITICAL] CWE-78 CVE-2025-34125: An unauthenticated command injection vulnerability exists in the cookie handling process of the ligh
An unauthenticated command injection vulnerability exists in the cookie handling process of the lighttpd web server on D-Link DSP-W110A1 firmware version 1.05B01. This occurs when specially crafted cookie values are processed, allowing remote attackers to execute arbitrary commands on the underlying Linux operating system. Successful exploitation e
nvd