CVE-2025-29041: An issue in dlink DIR 832x 240802 allows a remote attacker to execute arbitrary code via the target_addr key value and the function 0x41710c
Description
An issue in dlink DIR 832x 240802 allows a remote attacker to execute arbitrary code via the target_addr key value and the function 0x41710c
Classification
CVE ID: CVE-2025-29041
Affected Products
Vendor: n/a
Product: n/a
Exploit Prediction Scoring System (EPSS)
EPSS Score: 0.05% (probability of being exploited)
EPSS Percentile: 15.71% (scored less or equal to compared to others)
EPSS Date: 2025-04-18 (when was this score calculated)
References
https://nvd.nist.gov/vuln/detail/CVE-2025-29041https://www.dlink.com/en/security-bulletin/
https://github.com/xyqer1/Dlink-dir-823x-diag_nslookup-target_addr-CommandInjection
https://gist.github.com/xyqer1/101b7308bdf8618d8be30bd1d09ddd38