A security vulnerability has been detected in D-Link DAP-2695 2.00RC13. The impacted element is the function sub

FIRMWARE

PRODUCTS

27-10-2025 19:05

CVE-2025-12296 Vulnerabilidad documentada

Sin puntuación

Tags

#injection

#exploit

#product

#products

#firmware

#vulnerability

#security

#remote

#inject

#detected

#attack

#affect

Descripción

A security vulnerability has been detected in D-Link DAP-2695 2.00RC13. The impacted element is the function sub_4174B0 of component Firmware Update Handler. manipulation leads to os command injection. attack may be initiated remotely. exploit disclosed publicly and used. This only affects products that are no longer supported by maintainer.

https://github.com/IOTRes/IOT_Firmware_Update/blob/main/Dlink/DAP-2695_Injection.md

https://vuldb.com/?ctiid.329964

https://vuldb.com/?id.329964

https://vuldb.com/?submit.675855

https://www.dlink.com/

Referencia

Link externo

Ver detalles

Fuente

https://nvd.nist.gov/vuln/detail/CVE-2025-12296

Resultados similares

Coincidentes en almenos en 50% de los tags

28-10-2025 CVE-2025-61128
Stack-based buffer overflow vulnerability in WAVLINK QUANTUM D3G/WL-WN530HG3 firmware M30HG3_V2...
Ver información

28-10-2025 CVE-2025-9133
A missing authorization vulnerability in Zyxel ATP series firmware versions from V4.32 through ...
Ver información