CVE-2023-25280

⚠ KEVEPSS 93.1%

D-Link DIR-820 Router OS Command Injection Vulnerability

Added to CISA KEV: 9/30/2024

Description

D-Link DIR-820 routers contain an OS command injection vulnerability that allows a remote, unauthenticated attacker to escalate privileges to root via a crafted payload with the ping_addr parameter to ping.ccp.

Affected packages (0)

No package mapping in OSV.