CVE-2025-7192 – D-Link DIR-645 Command Injection Vulnerability

CVE ID : CVE-2025-7192

Published : July 8, 2025, 8:15 p.m. | 1 hour, 5 minutes ago

Description : A vulnerability was found in D-Link DIR-645 up to 1.05B01 and classified as critical. This issue affects the function ssdpcgi_main of the file /htdocs/cgibin of the component ssdpcgi. The manipulation leads to command injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. This vulnerability only affects products that are no longer supported by the maintainer.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…