CVE-2023-25280 — Actively Exploited: DIR-820 Router (D-Link)
D-Link DIR-820 routers contain an OS command injection vulnerability that allows a remote, unauthenticated attacker to escalate privileges to root via a crafted payload with the ping_addr parameter to ping.ccp.
| CVE ID | CVE-2023-25280 |
|---|---|
| Vendor | D-Link |
| Product | DIR-820 Router |
| Vulnerability name | D-Link DIR-820 Router OS Command Injection Vulnerability |
| Date added | 2024-09-30 |
| Remediation due | 2024-10-21 |
| Known ransomware use | Unknown |
| Required action | The impacted product is end-of-life (EoL) and/or end-of-service (EoS). Users should discontinue utilization of the product. |
| Description | D-Link DIR-820 routers contain an OS command injection vulnerability that allows a remote, unauthenticated attacker to escalate privileges to root via a crafted payload with the ping_addr parameter to ping.ccp. |
| Source | CISA Known Exploited Vulnerabilities |
🔍 Search all exploited vulnerabilities →
$1499/mo
Try ExploitWatch →