CVE-2025-15245
Path Traversal in D-Link DCS-850L Firmware Update Service
Publication date: 2025-12-30
Last updated on: 2026-04-29
Assigner: VulDB
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| d-link | dcs-850l | 1.02.09 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-22 | The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is an Absolute Path Traversal flaw in the D-Link DCS-850L device's Firmware Update Service, specifically in the 'uploadfirmware' function. It occurs because the service improperly handles the 'DownloadFile' argument, allowing an attacker on the local network to manipulate the file path using sequences like '../' to access files outside the intended directory. This means an attacker can read sensitive files on the device by tricking the firmware update process into opening arbitrary files. [1, 2]
How can this vulnerability impact me? :
The vulnerability can compromise the confidentiality of the device by allowing unauthorized access to sensitive system files such as configuration files and password files. This unauthorized file access could facilitate further attacks or information disclosure. Since the affected product is no longer supported and no mitigations exist, the risk is heightened. Exploitation requires local network access, and a public proof-of-concept exploit is available, making it easier for attackers to exploit. [1, 2]
How can this vulnerability be detected on my network or system? Can you suggest some commands?
Detection can focus on monitoring network traffic for attempts to exploit the path traversal in the Firmware Update Service's uploadfirmware function, specifically looking for HTTP requests containing path traversal sequences like "../" in the DownloadFile argument. Since the vulnerability requires local network access, inspecting local network traffic for suspicious firmware upload requests with unusual file paths is recommended. However, no specific detection commands or tools are provided in the available resources. [1, 2]
What immediate steps should I take to mitigate this vulnerability?
Immediate mitigation steps include replacing the affected D-Link DCS-850L device with an alternative product, as the device is no longer supported by the vendor and no known countermeasures or patches exist. Additionally, restricting local network access to the device and monitoring for suspicious firmware upload activity may help reduce risk until replacement is possible. [1]
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
This vulnerability compromises confidentiality by enabling unauthorized access to sensitive system files, which could lead to exposure of personal or protected data. Such unauthorized disclosure may result in non-compliance with data protection regulations like GDPR or HIPAA that require safeguarding sensitive information. Since the affected device is no longer supported and no mitigations are available, the risk to compliance is increased unless the device is replaced or properly secured. [1, 2]