CVE-2025-60697 | D-Link DIR-882 HTTP prog.cgi sub_4438A4 ServerAddress/Hostname command injection

A vulnerability was found in D-Link DIR-882 and classified as critical. Impacted is the function sub_4438A4 of the file prog.cgi of the component HTTP Handler. Executing manipulation of the argument ServerAddress/Hostname can lead to command injection.

This vulnerability is tracked as CVE-2025-60697. The attack can be launched remotely. No exploit exists.VulDB Recent EntriesRead More