| Title | D-Link DI-7003GV2 24.04.18D1 R(68125) Improper Access Controls |
|---|
| Description | The D-Link DI-7003GV2 firmware version 24.04.18D1 R(68125) contains an authentication bypass vulnerability in the /H5/backup.asp interface. Remote attackers can trigger a factory reset of the device by sending a crafted HTTP request with opt=reset without authentication. Exploitation results in the immediate loss of device configuration and service interruption, potentially leading to denial of service or unauthorized control reset. |
|---|
| Source | ⚠️ https://github.com/at0de/my_vulns/blob/main/Dlink/Di-7003GV2/backup.md |
|---|
| User | 153528990 (UID 64409) |
|---|
| Submission | 05/05/2025 03:51 (1 Year ago) |
|---|
| Moderation | 05/15/2025 11:03 (10 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 309052 [D-Link DI-7003GV2 24.04.18D1 R(68125) Factory Reset /H5/backup.asp?opt=reset sub_4983B0 denial of service] |
|---|
| Points | 19 |
|---|