D-Link DIR-822 Command Injection Vulnerability in udhcpd DHCP Service

Vulnerability

A command injection vulnerability has been identified in the D-Link DIR-822 router running firmware version A_101. This vulnerability resides in the udhcpd DHCP service, specifically within the file /udhcpcd/dhcpd.c. The issue arises because the DHCP server improperly sanitizes the hostname provided by clients in DHCP Option 12. This allows remote attackers to inject arbitrary commands that are executed on the router via the system function. Notably, this vulnerability affects devices that are no longer supported by D-Link.

Impact

Exploitation of this vulnerability allows for arbitrary command execution on the affected router.

Added: Apr 27, 2026, 12:21 AM

Updated: Apr 27, 2026, 12:21 AM

Vulnerability Rating

Custom Algorithm

spread

5.7

impact

7.5

exploitability

6.2

remediation

0.0

relevance

6.7

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

5.7

impact

7.5

exploitability

6.2

remediation

0.0

relevance

6.7

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

D-Link DIR-822 Command Injection Vulnerability in udhcpd DHCP Service

Vulnerability

Impact

Affected Products

D-Link DIR-822 A_101

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating