CVE-2025-4750

MEDIUM EPSS 55.7%

Published May 16, 20251y ago · Modified Jun 17, 20261w ago

6.9 CVSS 4.0

Medium

Published May 16, 2025 1y ago

Last Modified Jun 17, 2026 1w ago

Description

A vulnerability, which was classified as problematic, has been found in D-Link DI-7003GV2 24.04.18D1 R(68125). This issue affects some unknown processing of the file /H5/get_version.data of the component Configuration Handler. The manipulation leads to information disclosure. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

CVSS Details

Base Score

6.9

Exploitability

—

Impact

—

Vector string

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Attack Vector Network

Attack Complexity Low

Privileges Required None

User Interaction None

Scope X

Threat Intelligence

EPSS Exploit Probability

55.7% percentile

Exploit & Patch Status

Public Exploit Known

No Patch Available

Weaknesses 2

CWE-200 Exposure of Sensitive Information to an Unauthorized Actor Information Exposure

CWE-284

Affected Products 2

Vendor	Product	Version	Range
dlink	di-7003g_firmware	24.04.18d1_r\(68125\)	any
dlink	di-7003g	v2	any

References 5

github.com https://github.com/at0de/my_vulns/blob/main/Dlink/Di-7003GV2/get_version.md

Exploit
vuldb.com https://vuldb.com/?ctiid.309053

Permissions RequiredVDB Entry
vuldb.com https://vuldb.com/?id.309053

Permissions RequiredThird Party Advisory
vuldb.com https://vuldb.com/?submit.571069

Permissions RequiredThird Party Advisory
dlink.com https://www.dlink.com/

Product

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.