CVE-2025-10123

Name of the Vulnerable Software and Affected Versions D-Link DIR-823X versions up to 250416

Description A vulnerability exists in D-Link DIR-823X routers that allows for remote command injection. The vulnerability is located in the sub 415028 function of the /goform/set static leases file. Manipulation of the Hostname argument can lead to command injection, potentially granting unauthenticated attackers full device control. The exploit for this issue has been publicly disclosed.

Recommendations D-Link DIR-823X versions up to 250416: Update the firmware to address the vulnerability. D-Link DIR-823X versions up to 250416: Disable WAN administration access. D-Link DIR-823X versions up to 250416: Restrict management access to the LAN.