← ExploitWatch
HomeExploited Vulnerabilities

CVE-2023-25280 — Actively Exploited: DIR-820 Router (D-Link)

D-Link DIR-820 routers contain an OS command injection vulnerability that allows a remote, unauthenticated attacker to escalate privileges to root via a crafted payload with the ping_addr parameter to ping.ccp.

CVE IDCVE-2023-25280
VendorD-Link
ProductDIR-820 Router
Vulnerability nameD-Link DIR-820 Router OS Command Injection Vulnerability
Date added2024-09-30
Remediation due2024-10-21
Known ransomware useUnknown
Required actionThe impacted product is end-of-life (EoL) and/or end-of-service (EoS). Users should discontinue utilization of the product.
DescriptionD-Link DIR-820 routers contain an OS command injection vulnerability that allows a remote, unauthenticated attacker to escalate privileges to root via a crafted payload with the ping_addr parameter to ping.ccp.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →