CVE-2025-34248 | D-Link Nuclias Connect prior 1.3.1.4 deleteBackup deleteBackupList path traversal

A vulnerability has been found in D-Link Nuclias Connect and classified as critical. This affects an unknown part of the file /api/web/dnc/global/database/deleteBackup. Performing manipulation of the argument deleteBackupList results in path traversal.

This vulnerability was named CVE-2025-34248. The attack may be initiated remotely. There is no available exploit.

The affected component should be upgraded.VulDB Recent EntriesRead More