CVE-2025-10123 | D-Link DIR-823X up to 250416 set_static_leases sub_415028 Hostname command injection

A vulnerability classified as critical was found in D-Link DIR-823X up to 250416. Affected by this vulnerability is the function sub_415028 of the file /goform/set_static_leases. Executing manipulation of the argument Hostname can lead to command injection.

This vulnerability is tracked as CVE-2025-10123. The attack can be launched remotely. Moreover, an exploit is present.VulDB Recent EntriesRead More