CVE-2025-60673 | D-Link DIR-878A1 FW101B04 HTTP prog.cgi SetDMZSettings IPAddress command injection

A vulnerability identified as critical has been detected in D-Link DIR-878A1 FW101B04. Affected is the function SetDMZSettings of the file prog.cgi of the component HTTP Handler. Performing manipulation of the argument IPAddress results in command injection.

This vulnerability is reported as CVE-2025-60673. The attack is possible to be carried out remotely. No exploit exists.VulDB Recent EntriesRead More