CVE-2025-6932 | D-Link DCS-7517 up to 2.02.0 Qlync Password Generation /bin/httpd g_F_n_GenPassForQlync hard-coded password

A vulnerability, which was classified as problematic, was found in D-Link DCS-7517 up to 2.02.0. This affects the function g_F_n_GenPassForQlync of the file /bin/httpd of the component Qlync Password Generation Handler. The manipulation leads to use of hard-coded password. This vulnerability only affects products that are no longer supported by the maintainer.

This vulnerability is uniquely identified as CVE-2025-6932. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2025-6932 | D-Link DCS-7517 up to 2.02.0 Qlync Password Generation /bin/httpd g_F_n_GenPassForQlync hard-coded password

Post correlati

CVE-2024-40771 | Apple tvOS memory corruption

CVE-2024-42461 | Elliptic Package 6.5.6 on Node.js ECDSA Signature signature verification

CVE-2023-49788 | CollaboraOnline prior 23.5.602 Built-in CODE Server App path traversal (GHSA-3r69-xvf7-v94j)

CVE-2024-42357 | Shopware up to 6.5.8.12/6.6.5.0 API sql injection (GHSA-p6w9-r443-r752)