Home

Description

Incorrect access control in the config.xgi function of D-Link DSL-7740C with firmware DSL7740C.V6.TR069.20211230 allows attackers to download the configuration file via providing a crafted web request.

PUBLISHED Reserved 2025-03-11 | Published 2025-08-25 | Updated 2025-08-25 | Assigner mitre

References

www.dlink.com/en/security-bulletin/

gist.github.com/...yu113228/1fc5dcc63e4b4e9f5523167be11abf17

cve.org (CVE-2025-29514)

nvd.nist.gov (CVE-2025-29514)

Download JSON