CVE-2019-25250

MEDIUM

Devolo dLAN 500 AV Wireless+ <3.1.0-1 - CSRF

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2019-25250. PoCs published by sm.

AI-analyzed exploit summary This exploit demonstrates a Cross-Site Request Forgery (CSRF) vulnerability in devolo dLAN 550 duo+ Starter Kit. It allows an attacker to change NTP settings via a crafted POST request without proper CSRF token validation.

Description

Devolo dLAN 500 AV Wireless+ 3.1.0-1 contains a cross-site request forgery vulnerability that allows attackers to perform administrative actions without proper request validation. Attackers can craft malicious web pages that trigger unauthorized configuration changes by exploiting predictable URL actions when a logged-in user visits the site.

Exploits (1)

exploitdb WORKING POC
by sm · textwebappshardware
https://www.exploit-db.com/exploits/46324

This exploit demonstrates a Cross-Site Request Forgery (CSRF) vulnerability in devolo dLAN 550 duo+ Starter Kit. It allows an attacker to change NTP settings via a crafted POST request without proper CSRF token validation.

Classification
Working Poc 90%
Attack Type
Other
Complexity
Trivial
Reliability
Reliable
Target: devolo dLAN 500 AV Wireless+ 3.1.0-1 (i386)
Auth required
Prerequisites: Victim must be authenticated and visit a malicious site
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Exploit, Third Party Advisory exploit
https://www.exploit-db.com/exploits/46324
Various Sources product
https://www.devolo.com
Third Party Advisory third-party-advisory
https://www.zeroscience.mk/en/vulnerabilities/ZSL-2019-5507.php

Scores

CVSS v3 5.3
EPSS 0.0014
EPSS Percentile 3.6%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

CISA SSVC

Vulnrichment
Exploitation poc
Automatable no
Technical Impact partial

Details

CWE
CWE-352
Status published
Products (1)
devolo AG/dLAN 550 duo+ Starter Kit 500 AV Wireless+ 3.1.0-1
Published Dec 24, 2025
Tracked Since Feb 18, 2026