CRITICAL🇵🇱 Wersja polska

CVE-2025-29043

CVSS 9.8v3.1pub. 2025-04-17upd. 2025-04-25

An issue in dlink DIR 832x 240802 allows a remote attacker to execute arbitrary code via the function 0x417234

🤖 AI Analysis
How it works

The vulnerability occurs in the function at address 0x417234 in D-Link DIR-823X firmware version 240802. An attacker can pass crafted data to the function handling traceroute diagnostics (target_addr parameter), which are then interpreted as system commands without proper validation or sanitization. No authentication, user interaction, or specific network conditions are required.

Impact

An attacker can remotely execute arbitrary code with the privileges of the device process, which in practice means complete takeover of the router, ability to modify configuration, intercept network traffic, and use the device as an entry point to the local network.

Mitigation & patch

Apply patches available from the manufacturer according to the references (https://www.dlink.com/en/security-bulletin/). Until updates are released, it is recommended to restrict access to the device management interface only to trusted IP addresses and disable remote access to the administrative panel from the WAN side.

Who is affected

D-Link DIR-823X firmware version 240802

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Dlink Dir 823x

    HW
    Dlink
    wszystkie wersje
  • Dlink Dir 823x Firmware

    OS
    Dlink
    240802
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
RCECommand Injection
CWE
References

Related vulnerabilities

CVE-2025-29041CRITICAL9.8PL ✓ten sam produkt

Command injection w D-Link DIR-823X umożliwiający zdalne wykonanie kodu

CVE-2025-29040CRITICAL9.8PL ✓ten sam produkt

Command Injection w D-Link DIR-823X — zdalne wykonanie kodu przez parametr target_addr

CVE-2025-29042CRITICAL9.8PL ✓ten sam produkt

D-Link DIR-823X: Command Injection przez parametr macaddr (RCE)

CVE-2024-39962CRITICAL9.8PL ✓ten sam produkt

RCE w routerze D-Link DIR-823X poprzez parametr ntp_zone_val

CVE-2025-29635HIGH7.2⚠ KEVten sam produkt

A command injection vulnerability in D-Link DIR-823X 240126 and 240802 allows an authorized attacker to execut...