CVE-2025-10441 — Command Injection in D-link Di-8003g

CWE-77 — Command Injection CWE-78 — OS Command Injection4 documents4 sources

Severity

5.3MEDIUMNVD

EPSS

0.4%

top 38.06%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

D-link Di-8003g D-link Di-8100g D-link Di-8200g

Timeline

PublishedSep 15

Description

A vulnerability was found in D-Link DI-8100G, DI-8200G and DI-8003G 17.12.20A1/19.12.10A1. Affected by this issue is the function sub_433F7C of the file version_upgrade.asp of the component jhttpd. The manipulation of the argument path results in os command injection. The attack may be launched remotely. The exploit has been made public and could be used.

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N

Affected Packages3 packages

▶CVEListV5d-link/di-8003g17.12.20A1, 19.12.10A1+1

▶CVEListV5d-link/di-8100g17.12.20A1, 19.12.10A1+1

▶CVEListV5d-link/di-8200g17.12.20A1, 19.12.10A1+1

🔴Vulnerability Details

GHSA

GHSA-qf3c-5rrw-cj3f: A vulnerability was found in D-Link DI-8100G, DI-8200G and DI-8003G 17↗2025-09-15

▶

CVEList

D-Link DI-8100G/DI-8200G/DI-8003G jhttpd version_upgrade.asp sub_433F7C os command injection↗2025-09-15

▶

🔍Detection Rules

Suricata

ET WEB_SPECIFIC_APPS D-Link version_upgrade.asp path Parameter Command Injection Attempt (CVE-2025-10441)↗2025-09-15

▶