This page lists publicly disclosed CVE vulnerabilities affecting dlink dsl-7740c_firmware (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-29523 | D-Link DSL-7740C with firmware DSL7740C.V6.TR069.20211230 was discovered to contain a command injection vulnerability via the ping6 function. | [email protected] | 7.2 | 2.10% | 2025-08-25 | 2026-06-17 |
| CVE-2025-29522 | D-Link DSL-7740C with firmware DSL7740C.V6.TR069.20211230 was discovered to contain a command injection vulnerability via the ping function. | [email protected] | 6.5 | 1.36% | 2025-08-25 | 2026-06-17 |
| CVE-2025-29521 | Insecure default credentials for the Adminsitrator account of D-Link DSL-7740C with firmware DSL7740C.V6.TR069.20211230 allows attackers to escalate privileges via a bruteforce attack. | [email protected] | 5.3 | 0.55% | 2025-08-25 | 2026-06-17 |
| CVE-2025-29520 | Incorrect access control in the Maintenance module of D-Link DSL-7740C with firmware DSL7740C.V6.TR069.20211230 allows authenticated attackers with low-level privileges to arbitrarily change the high-privileged account passwords and escalate privileges. | [email protected] | 5.3 | 0.54% | 2025-08-25 | 2026-06-17 |
| CVE-2025-29519 | A command injection vulnerability in the EXE parameter of D-Link DSL-7740C with firmware DSL7740C.V6.TR069.20211230 allows attackers to execute arbitrary commands via supplying a crafted GET request. | [email protected] | 5.3 | 1.74% | 2025-08-25 | 2026-06-17 |
| CVE-2025-29517 | D-Link DSL-7740C with firmware DSL7740C.V6.TR069.20211230 was discovered to contain a command injection vulnerability via the traceroute6 function. | [email protected] | 6.8 | 1.65% | 2025-08-25 | 2026-06-17 |
| CVE-2025-29516 | D-Link DSL-7740C with firmware DSL7740C.V6.TR069.20211230 was discovered to contain a command injection vulnerability via the backup function. | [email protected] | 7.2 | 2.13% | 2025-08-25 | 2026-06-17 |
| CVE-2025-29515 | Incorrect access control in the DELT_file.xgi endpoint of D-Link DSL-7740C with firmware DSL7740C.V6.TR069.20211230 allows attackers to modify arbitrary settings within the device's XML database, including the administrator’s password. | [email protected] | 9.8 | 0.58% | 2025-08-25 | 2026-06-17 |
| CVE-2025-29514 | Incorrect access control in the config.xgi function of D-Link DSL-7740C with firmware DSL7740C.V6.TR069.20211230 allows attackers to download the configuration file via providing a crafted web request. | [email protected] | 9.8 | 0.56% | 2025-08-25 | 2026-06-17 |
| CVE-2020-12774 | D-Link DSL-7740C does not properly validate user input, which allows an authenticated LAN user to inject arbitrary command. | [email protected] | 8.2 | 0.41% | 2020-07-22 | 2026-06-16 |