CVE-2020-25506CISA KEVEPSS p100.0%

CVE-2020-25506D-Link DNS-320 Device Command Injection Vulnerability

D-Link / DNS-320 Device

Description

D-Link DNS-320 device contains a command injection vulnerability in the sytem_mgr.cgi component that may allow for remote code execution.

Scoring

EPSS99.97% probability of exploitation · percentile 100.0% · 2026-06-15T12:03:41Z

CISA KEV entry

Added to KEV: 2021-11-03

(incoming)1

TypeTargetConfidenceTier
KEVEntryD-Link DNS-320 Device Command Injection Vulnerabilitykev-cve-2020-255060%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
D-Link DNS-320 Remote Code Execution Vulnerability
CVE
CVE-2026-4203
CVE
D-Link DIR-610 Devices Remote Command Execution
CVE
CVE-2026-4206
CVE
D-Link Multiple NAS Devices Command Injection Vulnerability
CVE
CVE-2026-4207
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.