Vulnerability CVE-2023-25280
Published: 2023-03-16

Description:
OS Command injection vulnerability in D-Link DIR820LA1_FW105B03 allows attackers to escalate privileges to root via a crafted payload with the ping_addr parameter to ping.ccp.

 References:
https://www.dlink.com/en/security-bulletin/
https://github.com/migraine-sudo/D_Link_Vuln/tree/main/cmd%20Inject%20in%20pingV4Msg
Copyright 2023, cxsecurity.com

 

Back to Top