CVE-2025-25894

An OS command injection vulnerability was discovered in D-Link DSL-3782 v1.01 via the samba_wg and samba_nbn parameters. This vulnerability allows attackers to execute arbitrary operating system (OS) commands via a crafted packet. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt