CVE-2025-15391 | D-Link DIR-806A 100CNb11 SSDP Request ssdpcgi_main command injection

December 31, 2025 Yanac

A vulnerability, which was classified as critical, has been found in D-Link DIR-806A 100CNb11. Affected is the function ssdpcgi_main of the component SSDP Request Handler. This manipulation causes command injection. This vulnerability only affects products that are no longer supported by the maintainer.

This vulnerability is handled as CVE-2025-15391. The attack can be initiated remotely. Additionally, an exploit exists.VulDB Recent EntriesRead More