An issue was discovered on D-Link DIR-825 Rev.B 2.10 devices. They allow remote attackers to execute arbitrary commands via the ntp_server parameter in an ntp_sync.cgi POST request.
8.8CVSS
9AI Score
0.003EPSS
An issue was discovered on D-Link DIR-825 Rev.B 2.10 devices. The "user" account has a blank password.
9.8CVSS
9.4AI Score
0.006EPSS
An issue was discovered on D-Link DIR-825 Rev.B 2.10 devices. There is an information disclosure vulnerability via requests for the router_info.xml document. This will reveal the PIN code, MAC address, routing table, firmware version, update time, QOS information, LAN information, and WLAN informat...
7.5CVSS
7.3AI Score
0.004EPSS