CVE-2025-46176

Published May 23, 2025

Last updated a month ago

CVSS medium 6.5

Overview

Description
Hardcoded credentials in the Telnet service in D-Link DIR-605L v2.13B01 and DIR-816L v2.06B01 allow attackers to remotely execute arbitrary commands via firmware analysis.
Source
cve@mitre.org
NVD status
Analyzed

Risk scores

CVSS 3.1

Type
Secondary
Base score
6.5
Impact score
2.5
Exploitability score
3.9
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
Severity
MEDIUM

Weaknesses

134c704f-9b21-4f2e-91b3-4a467353bcc0
CWE-77

Social media

Hype score
Not currently trending

  1. D-Link Router の脆弱性 CVE-2025-46176:ハードコードされた Telnet 認証情報 https://t.co/iCpo3x7efB D-Link DIR-605L/DIR-816L に RCE 脆弱性とのことですが、現時点ではパッチが存在しないとのことです。当該製品をご利用のチ

    @iototsecnews

    6 Jun 2025

    43 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  2. Trending CVEs on 29/5/25: CVE-2021-43883 / Microsoft Windows / Privilege Escalation CVE-2023-38879 / openSIS / Path Traversal CVE-2024-51211 / openSIS / SQL Injection CVE-2025-46176 / D-Link / Hardcoded Credentials Learn More: https://t.co/qa9eXdXTMN #EarlyWarning #Infosec http

    @arpsyndicate

    29 May 2025

    96 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  3. به تازگی برای مودم های Dlink مدل DIR-605L و DIR-816L آسیب پذیری با کد شناسایی (CVE-2025-46176) برای سرویس telnet و user و پسورد hardcode شده در این مدل روتر ها منتشر شده است. این آسیب

    @AmirHossein_sec

    27 May 2025

    28 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  4. A new vulnerability (CVE-2025-46176) affects D-Link DIR-605L & DIR-816L routers, exposing hardcoded Telnet credentials that allow remote command execution. Firmware patches are still pending. 🛑 #DLink #TelnetRisk #UK https://t.co/1qCyn0LwcQ

    @TweetThreatNews

    27 May 2025

    39 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

  5. A new vulnerability (CVE-2025-46176) affects D-Link DIR-605L & DIR-816L routers with firmware versions 2.13B01 & 2.06B01. Hardcoded Telnet credentials allow remote command execution. Firmware patches missing. 🔒 #RouterSecurity #TelnetFlaw https://t.co/1qCyn0LwcQ

    @TweetThreatNews

    27 May 2025

    50 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

  6. 【CVE-2025-46176】D-Link製ルータに深刻な脆弱性、ハードコードされたTelnet認証情報により任意コマンド実行が可能 – いまだ公式修正パッチは未提供 https://t.co/RD3sQGqAOm @nikkeimatomeより

    @nikkeimatome

    26 May 2025

    61 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  7. CVE-2025-46176 Hardcoded credentials in the Telnet service in D-Link DIR-605L v2.13B01 and DIR-816L v2.06B01 allow attackers to remotely execute arbitrary commands via firmware anal… https://t.co/5K7AMxqvbq

    @CVEnew

    24 May 2025

    446 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

Configurations

References

Sources include official advisories and independent security research.