D-LINK DIR-825 AC1200 R2 is vulnerable to Directory Traversal. An attacker could use the “…/…/…/…/” setting of the FTP server folder to set the router’s root folder for FTP access. This allows you to access the entire router file system via the FTP server.
CPE | Name | Operator | Version |
---|---|---|---|
dir-825_firmware | eq | 2022.1.13-13.48 |