CRITICAL🇵🇱 Wersja polska

CVE-2025-29042

CVSS 9.8v3.1pub. 2025-04-17upd. 2025-04-25

An issue in dlink DIR 832x 240802 allows a remote attacker to execute arbitrary code via the macaddr key value to the function 0x42232c

🤖 AI Analysis
How it works

The vulnerability exists in a function at address 0x42232c in the device firmware. An attacker can submit a crafted value of the 'macaddr' key, which is passed to a system function without proper input data sanitization. This enables injection and execution of arbitrary system commands in the device context (CWE-78: OS Command Injection). The attack can be conducted remotely, without authentication and without user interaction.

Impact

An attacker gains the ability to execute arbitrary code on the device, which may lead to complete takeover of the router, violation of data confidentiality and integrity, and disruption of network service availability.

Mitigation & patch

Apply patches available from the manufacturer according to references (https://www.dlink.com/en/security-bulletin/). Until the fix is deployed, it is recommended to restrict access to the device's administrative interface only to trusted hosts and disable remote management from the WAN side.

Who is affected

D-Link DIR-823X with firmware version 240802

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Dlink Dir 823x

    HW
    Dlink
    wszystkie wersje
  • Dlink Dir 823x Firmware

    OS
    Dlink
    240802
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
RCECommand Injection
CWE
References

Related vulnerabilities

CVE-2025-29041CRITICAL9.8PL ✓ten sam produkt

Command injection w D-Link DIR-823X umożliwiający zdalne wykonanie kodu

CVE-2025-29040CRITICAL9.8PL ✓ten sam produkt

Command Injection w D-Link DIR-823X — zdalne wykonanie kodu przez parametr target_addr

CVE-2025-29043CRITICAL9.8PL ✓ten sam produkt

D-Link DIR-823X – command injection umożliwiający zdalne wykonanie kodu

CVE-2024-39962CRITICAL9.8PL ✓ten sam produkt

RCE w routerze D-Link DIR-823X poprzez parametr ntp_zone_val

CVE-2025-29635HIGH7.2⚠ KEVten sam produkt

A command injection vulnerability in D-Link DIR-823X 240126 and 240802 allows an authorized attacker to execut...