D-Link Wireless N 300 ADSL2+ Modem Router session hijacking risk

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

8.2

D-Link Wireless N 300 ADSL2+ Modem Router session hijacking risk

CVE-2025-71057

Summary

Attackers can potentially take control of an authenticated user's connection on a D-Link Wireless N 300 ADSL2+ Modem Router. This could allow them to access sensitive information or make changes to the network. Update the router's firmware to the latest version to protect against this risk.

Original title

Improper session management in D-Link Wireless N 300 ADSL2+ Modem Router DSL-124 ME_1.00 allows attackers to execute a session hijacking attack via spoofing the IP address of an authenticated user.

Original description

Improper session management in D-Link Wireless N 300 ADSL2+ Modem Router DSL-124 ME_1.00 allows attackers to execute a session hijacking attack via spoofing the IP address of an authenticated user.

nvd CVSS3.1 8.2

Vulnerability type

CWE-287 Improper Authentication

CWE-345

CWE-384

Published: 26 Feb 2026 · Updated: 12 Mar 2026 · First seen: 6 Mar 2026