CVE-2025-60700
- EPSS 0.15%
- Veröffentlicht 13.11.2025 18:15:54
- Zuletzt bearbeitet 17.11.2025 12:28:40
A command injection vulnerability exists in the D-Link DIR-882 Router firmware DIR882A1_FW102B02 within the `prog.cgi` and `librcm.so` binaries. The `sub_4455BC` function in `prog.cgi` stores user-supplied `SetDMZSettings/IPAddress` values in NVRAM v...
CVE-2025-60697
- EPSS 0.42%
- Veröffentlicht 13.11.2025 00:00:00
- Zuletzt bearbeitet 17.11.2025 12:29:07
A command injection vulnerability exists in the D-Link DIR-882 Router firmware DIR882A1_FW102B02 within the `prog.cgi` and `rc` binaries. The `sub_4438A4` function in `prog.cgi` stores user-supplied DDNS parameters (`ServerAddress` and `Hostname`) in...
CVE-2025-60698
- EPSS 0.42%
- Veröffentlicht 13.11.2025 00:00:00
- Zuletzt bearbeitet 17.11.2025 12:28:54
A command injection vulnerability exists in the D-Link DIR-882 Router firmware DIR882A1_FW102B02 within the `prog.cgi` and `rc` binaries. The `sub_432F60` function in `prog.cgi` stores user-supplied `SetSysLogSettings/IPAddress` values in NVRAM via `...
CVE-2023-24330
- EPSS 0.95%
- Veröffentlicht 21.02.2024 21:15:08
- Zuletzt bearbeitet 25.03.2025 16:50:30
Command Injection vulnerability in D-Link Dir 882 with firmware version DIR882A1_FW130B06 allows attackers to run arbitrary commands via crafted POST request to /HNAP1/.