exploitDog

CVE-2025-29042

Опубликовано: 17 апр. 2025

Источник: nvd

CVSS3: 9.8

EPSS Низкий

Описание

An issue in dlink DIR 832x 240802 allows a remote attacker to execute arbitrary code via the macaddr key value to the function 0x42232c

Ссылки

https://gist.github.com/xyqer1/841e78a3c4029808dac8c439595a1358
Exploit
Third Party Advisory
https://github.com/xyqer1/Dlink-dir-823x-set_prohibiting-macaddr-CommandInjection
Exploit
Third Party Advisory
https://www.dlink.com/en/security-bulletin/
Vendor Advisory
https://github.com/xyqer1/Dlink-dir-823x-set_prohibiting-macaddr-CommandInjection
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:dlink:dir-823x_firmware:240802:*:*:*:*:*:*:*

cpe:2.3:h:dlink:dir-823x:-:*:*:*:*:*:*:*

EPSS

Процентиль: 86%

0.02833

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-78

Связанные уязвимости

GHSA-4xwm-8vcx-7p9c

CVSS3: 9.8

github

10 месяцев назад

An issue in dlink DIR 832x 240802 allows a remote attacker to execute arbitrary code via the macaddr key value to the function 0x42232c

EPSS

Процентиль: 86%

0.02833

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-78