CVE-2025-45784CRITICAL 9.8EPSS p38.1%

CVE-2025-45784CVE-2025-45784

Description

D-Link DPH-400S/SE VoIP Phone v1.01 contains hardcoded provisioning variables, including PROVIS_USER_PASSWORD, which may expose sensitive user credentials. An attacker with access to the firmware image can extract these credentials using static analysis tools such as strings or xxd, potentially leading to unauthorized access to device functions or user accounts. This vulnerability exists due to insecure storage of sensitive information in the firmware binary.

Scoring

CVSS 3.19.8 (CRITICAL)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS0.49% probability of exploitation · percentile 38.1% · 2026-06-18T12:00:27Z
Published2025-06-18
Last modified2025-07-22

Underlying weaknesses· 1

CWE-798

References

  1. https://cybermaya.in/posts/Post-37/
  2. https://www.dlink.com/en/security-bulletin/

1

TypeTargetConfidenceTier
WeaknessUse of Hard-coded Credentialscwe-7980%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-4344
CVE
CVE-2025-44083
CVE
D-Link Multiple NAS Devices Use of Hard-Coded Credentials Vulnerability
CVE
CVE-2025-29515
CVE
CVE-2025-4343
CVE
CVE-2025-44084
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.