A vulnerability, which was classified as critical, was found in D-Link DAP-1562 1.10. This affects the function pure_auth_check of the component HTTP POST Request Handler. The manipulation of the argument a1 leads to null pointer dereference. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. This vulnerability only affects products that are no longer supported by the maintainer.
References
| Link | Resource |
|---|---|
| https://vuldb.com/?ctiid.298191 | Permissions Required |
| https://vuldb.com/?id.298191 | Permissions Required |
| https://vuldb.com/?submit.506526 | Third Party Advisory |
| https://witty-maiasaura-083.notion.site/D-link-DAP-1562-pure_auth_check-Vulnerability-1a5b2f2a63618013a1fecb743f2d0667 | Exploit |
| https://www.dlink.com/ | Product |
Configurations
Configuration 1 (hide)
| AND |
|
History
17 Jun 2026, 08:40
| Type | Values Removed | Values Added |
|---|---|---|
| Summary | (es) En D-Link DAP-1562 1.10 se ha detectado una vulnerabilidad clasificada como crítica que afecta a la función pure_auth_check del componente HTTP POST Request Handler. La manipulación del argumento a1 provoca la desreferenciación de un puntero nulo. Es posible iniciar el ataque de forma remota. Se ha hecho público el exploit y puede que sea utilizado. Esta vulnerabilidad solo afecta a los productos que ya no reciben soporte del fabricante. |
06 Mar 2025, 12:21
| Type | Values Removed | Values Added |
|---|---|---|
| First Time |
Dlink dap-1562
Dlink dap-1562 Firmware Dlink |
|
| Summary |
|
|
| CPE | cpe:2.3:o:dlink:dap-1562_firmware:1.10:*:*:*:*:*:*:* cpe:2.3:h:dlink:dap-1562:*:*:*:*:*:*:*:* |
|
| References | () https://vuldb.com/?ctiid.298191 - Permissions Required | |
| References | () https://vuldb.com/?id.298191 - Permissions Required | |
| References | () https://vuldb.com/?submit.506526 - Third Party Advisory | |
| References | () https://witty-maiasaura-083.notion.site/D-link-DAP-1562-pure_auth_check-Vulnerability-1a5b2f2a63618013a1fecb743f2d0667 - Exploit | |
| References | () https://www.dlink.com/ - Product |
03 Mar 2025, 19:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2025-03-03 19:15
Updated : 2026-06-17 08:40
NVD link : CVE-2025-1877
Mitre link : CVE-2025-1877
CVE.ORG link : CVE-2025-1877
JSON object : View
Products Affected
dlink
- dap-1562
- dap-1562_firmware
