Home

Description

Incorrect access control in the Maintenance module of D-Link DSL-7740C with firmware DSL7740C.V6.TR069.20211230 allows authenticated attackers with low-level privileges to arbitrarily change the high-privileged account passwords and escalate privileges.

PUBLISHED Reserved 2025-03-11 | Published 2025-08-25 | Updated 2025-08-26 | Assigner mitre

References

www.dlink.com/en/security-bulletin/

gist.github.com/...yu113228/da01c377030fd8c92274feca54661202

cve.org (CVE-2025-29520)

nvd.nist.gov (CVE-2025-29520)

Download JSON