QwikSec

Security Database

CVE

CWE

Training

CVE-2018-25125

Published: Nov 14, 2025

Modified: Apr 7, 2026

PUBLISHED

Description

Netis ADSL Router DL4322D firmware RTK 2.1.1 contains a buffer overflow vulnerability in the embedded FTP service that allows an authenticated remote user to trigger a denial of service. After logging in to the FTP service, sending an FTP command such as ABOR with an excessively long argument causes the service, and in practice the router, to crash or become unresponsive, resulting in a loss of availability for the device and connected users.

Vendor	Product	Versions
Netis Systems Co., Ltd.	DL4322D	affected `0 - <= RTK 2.1.1`

Weaknesses (CWE)

References

https://www.exploit-db.com/exploits/45424

exploit

https://web.archive.org/web/20180731191918/http://www.netis-systems.com/Home/detail/id/74.html

product

https://www.netis-systems.com/

product

https://www.vulncheck.com/advisories/netis-dl4322d-ftp-service-dos

third-party-advisory

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.