CVE-2025-60676 | D-Link DIR-878A1 FW101B04 HTTP prog.cgi SetNetworkSettings IPAddress/SubnetMask command injection

A vulnerability labeled as critical has been found in D-Link DIR-878A1 FW101B04. Affected by this vulnerability is the function SetNetworkSettings of the file prog.cgi of the component HTTP Handler. Executing manipulation of the argument IPAddress/SubnetMask can lead to command injection.

This vulnerability appears as CVE-2025-60676. The attack may be performed from remote. There is no available exploit.VulDB Recent EntriesRead More