Primary

Context

D-Link DIR-823X Command Injection Vulnerability in Traceroute Diagnostic Function

Vulnerability

A command injection vulnerability has been identified in the D-Link DIR-823X router, specifically in the 250416 firmware version. The issue arises in the '/goform/diag_traceroute' file, where the 'target_addr' parameter is not properly validated. This lack of validation allows attackers to inject malicious strings, potentially leading to the execution of arbitrary commands on the device. The vulnerability can be exploited remotely.

Impact

Exploitation of this vulnerability allows for arbitrary command execution on the affected router.

Reproduction

To reproduce this vulnerability, log into the D-Link DIR-823X router and navigate to the traceroute diagnostic function. The 'target_addr' parameter can be manipulated by injecting a command, such as '127.0.0.1;ls', which exploits the command injection flaw by executing the 'ls' command on the router's operating system.

Added: Sep 28, 2025, 5:19 AM

Updated: Sep 28, 2025, 5:19 AM

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

7.5

exploitability

9.1

remediation

0.0

relevance

0.6

threat

6.4

urgency

2.9

incentive

9.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

7.5

exploitability

9.1

remediation

0.0

relevance

0.6

threat

6.4

urgency

2.9

incentive

9.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

D-Link DIR-823X Command Injection Vulnerability in Traceroute Diagnostic Function

Vulnerability

Impact

Reproduction

Affected Products

D-Link DIR-823X

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating