CVE-2025-60675
Last modified
CVE-2025-60675 is a medium-severity vulnerability rated 5.4/10 on the CVSS scale. A command injection vulnerability exists in the D-Link DIR-823G router firmware DIR823G_V1.0.2B05_20181207.bin in the timelycheck and sysconf binaries, which process the /tmp/new_qos.rule configuration file. The vulnerability occurs because parsed fields from the configuration file are concatenated into command strings and executed via system() without any sanitization. EPSS estimates a 1.34% chance of exploitation in the next 30 days.
Description
A command injection vulnerability exists in the D-Link DIR-823G router firmware DIR823G_V1.0.2B05_20181207.bin in the timelycheck and sysconf binaries, which process the /tmp/new_qos.rule configuration file. The vulnerability occurs because parsed fields from the configuration file are concatenated into command strings and executed via system() without any sanitization. An attacker with write access to /tmp/new_qos.rule can execute arbitrary commands on the device.
Metrics
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Dlink | Dir-823g Firmware | 1.0.2b05_20181207 |
References
- http://d-link.comProduct
- https://github.com/yifan20020708/SGTaint-0-day/blob/main/DLink/DLink-DIR-823G/CVE-2025-60675.mdExploit, Third Party Advisory
- https://www.dlink.com/enProduct
- https://www.dlink.com/en/security-bulletin/Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Analyzed
Frequently Asked Questions
What is CVE-2025-60675?
How severe is CVE-2025-60675?
How do I fix CVE-2025-60675?
Are you affected by CVE-2025-60675?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST