CVE-2025-9745 | D-Link DI-500WF 14.04.10A1T jhttpd /version_upgrade.asp path os command injection

A vulnerability, which was classified as critical, has been found in D-Link DI-500WF 14.04.10A1T. The impacted element is an unknown function of the file /version_upgrade.asp of the component jhttpd. The manipulation of the argument path leads to os command injection.

This vulnerability is listed as CVE-2025-9745. The attack may be initiated remotely. In addition, an exploit is available.VulDB Recent EntriesRead More