Aug 06, 2025Ravie LakshmananVulnerability / Firmware Safety
The U.S. Cybersecurity and Infrastructure Safety Company (CISA) on Tuesday added three previous safety flaws impacting D-Hyperlink Wi-Fi cameras and video recorders to its Recognized Exploited Vulnerabilities (KEV) catalog, primarily based on proof of energetic exploitation within the wild.
The high-severity vulnerabilities, that are from 2020 and 2022, are listed beneath –
CVE-2020-25078 (CVSS rating: 7.5) – An unspecified vulnerability in D-Hyperlink DCS-2530L and DCS-2670L gadgets that would permit for distant administrator password disclosure
CVE-2020-25079 (CVSS rating: 8.8) – An authenticated command injection vulnerability within the cgi-bin/ddns_enc.cgi part affecting D-Hyperlink DCS-2530L and DCS-2670L gadgets
CVE-2020-40799 (CVSS rating: 8.8) – A obtain of code with out an integrity verify vulnerability in D-Hyperlink DNR-322L that would permit an authenticated attacker to execute working system-level instructions on the system
There are presently no particulars on how these shortcomings are being exploited within the wild, though a December 2024 advisory from the U.S. Federal Bureau of Investigation (FBI) warned of HiatusRAT campaigns actively scanning internet cameras which are susceptible to CVE-2020-25078.
It is price noting that CVE-2020-40799 stays unpatched because of the affected mannequin reaching end-of-life (EoL) standing as of November 2021. Customers nonetheless counting on DNR-322L are suggested to discontinue and substitute them. Fixes for the opposite two flaws have been launched by D-Hyperlink in 2020.
In gentle of energetic exploitation, it is important that Federal Civilian Government Department (FCEB) businesses perform the mandatory mitigation steps by August 26, 2025, to safe their networks.
(The story was up to date after publication to emphasise that the problems have an effect on D-Hyperlink Wi-Fi cameras and video recorders and never routers as beforehand said. The error is regretted.)
