Vulnerabilities

CVE-2019-25249 - devolo dLAN 500 AV Wireless+ 3.1.0-1 Remote Code Execution via htmlmgr

2025-12-24 0 views admin

CVE ID : CVE-2019-25249 Published : Dec. 24, 2025, 8:15 p.m. | 1 hour, 30 minutes ago Description : devolo dLAN 500 AV Wireless+ 3.1.0-1 contains an authentication bypass vulnerability that allows attackers to enable hidden services through the htmlmgr CGI script. Attackers can enable telnet and remote shell services, reboot the device, and gain root access without a password by manipulating system configuration parameters. Severity: 9.8 | CRITICAL Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

CVE ID

CVE-2019-25249

Severity

CRITICAL

Published

Dec. 24, 2025

Impact: authentication bypass

Source: Telegram CVE Monitor

🏷️ Tags

cvevulnerabilitysecuritycybersecuritycve-2019-25249critical

CVE-2019-25249 - devolo dLAN 500 AV Wireless+ 3.1.0-1 Remote Code Execution via htmlmgr

CVE Details

🏷️ Tags

More from Vulnerabilities

CVE-2025-15077 - itsourcecode Student Management System form137.php sql injection

CVE-2025-15078 - itsourcecode Student Management System list_report.php sql injection

CVE-2025-32095 - Pexip Infinity Signalling Denial of Service

CVE-2025-59683 - Pexip Infinity Improper Access Control Denial of Service

Trending

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

CVE-2025-43939: Dell Unity OS Command Injection (High)

Google disputes false claims of massive Gmail data breach

Microsoft: DNS outage impacts Azure and Microsoft 365 services

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting