CVE-2025-10093 | D-Link DIR-852 up to 1.00CN B09 Device Configuration /getcfg.php phpcgi_main information disclosure

A vulnerability described as problematic has been identified in D-Link DIR-852 up to 1.00CN B09. Affected by this vulnerability is the function phpcgi_main of the file /getcfg.php of the component Device Configuration Handler. Such manipulation leads to information disclosure. This vulnerability only affects products that are no longer supported by the maintainer.

This vulnerability is listed as CVE-2025-10093. The attack may be performed from remote. In addition, an exploit is available.

Restrictive firewalling should be applied.VulDB Recent EntriesRead More