← Back

Di 500wf Firmware

di-500wf_firmware

Vendor: Dlink • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2025-9745
1Dlink
1Di 500wf Firmware
Apr 29, 2026
Aug 31, 2025
2.0 LOW· v4
7.2 HIGH· v3
5.8 MEDIUM· v2
A security vulnerability has been detected in D-Link DI-500WF 14.04.10A1T. The impacted element is an unknown function of the file /version_upgrade.asp of the component jhttpd. The manipulation of the argument path leads...Show more
A security vulnerability has been detected in D-Link DI-500WF 14.04.10A1T. The impacted element is an unknown function of the file /version_upgrade.asp of the component jhttpd. The manipulation of the argument path leads to os command injection. The attack may be initiated remotely. The exploit has been disclosed publicly and may be used.Show less
CVE-2025-7194
1Dlink
1Di 500wf Firmware
Jul 14, 2025
Jul 8, 2025
7.4 HIGH· v4
8.8 HIGH· v3
9.0 HIGH· v2
A vulnerability was found in D-Link DI-500WF 17.04.10A1T. It has been declared as critical. Affected by this vulnerability is the function sprintf of the file ip_position.asp of the component jhttpd. The manipulation of...Show more
A vulnerability was found in D-Link DI-500WF 17.04.10A1T. It has been declared as critical. Affected by this vulnerability is the function sprintf of the file ip_position.asp of the component jhttpd. The manipulation of the argument ip leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.Show less