First published: Tue May 17 2022(Updated: )
D-LINK DIR-825 AC1200 R2 is vulnerable to Directory Traversal. An attacker could use the "../../../../" setting of the FTP server folder to set the router's root folder for FTP access. This allows you to access the entire router file system via the FTP server.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Dlink Dir-825 Firmware | =2022.01.13-13.48 | |
Dlink Dir-825 | =r2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID is CVE-2022-29332.
The severity of CVE-2022-29332 is medium (6.5).
The affected software is D-LINK DIR-825 AC1200 R2 with firmware version 2022.01.13-13.48.
CVE-2022-29332 is a Directory Traversal vulnerability in D-LINK DIR-825 AC1200 R2, which allows an attacker to access the entire router file system via the FTP server.
There is currently no official fix available for CVE-2022-29332. It is recommended to monitor for vendor updates and apply patches as soon as they are released.