CVE-2025-5571 | D-Link DCS-932L 2.18.01 /setSystemAdmin AdminID os command injection

A vulnerability was found in D-Link DCS-932L 2.18.01. It has been classified as critical. Affected is the function setSystemAdmin of the file /setSystemAdmin. The manipulation of the argument AdminID leads to os command injection. This vulnerability only affects products that are no longer supported by the maintainer.

This vulnerability is traded as CVE-2025-5571. It is possible to launch the attack remotely. Furthermore, there is an exploit available.VulDB Recent EntriesRead More