Null Pointer Dereference in D-Link DIR-823X
CVE-2025-0492

8.7HIGH

Key Information:

Vendor: D-link
Status: Dir-823x
Vendor: CVE Published:; 15 January 2025

Badges

👾 Exploit Exists🟡 Public PoC

What is CVE-2025-0492?

A vulnerability exists in the D-Link DIR-823X models 240126 and 240802 due to improper handling of a function resulting in a null pointer dereference. This flaw allows remote attackers to exploit the device, potentially leading to a denial of service. Awareness of this vulnerability is crucial as it has been publicly disclosed, increasing the risk of exploitation.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

DIR-823X 240126

DIR-823X 240802

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2025-0492 - Proof of Concept

References

https://vuldb.com/?id.291937

vdb-entrytechnical-description

https://vuldb.com/?ctiid.291937

signaturepermissions-required

https://vuldb.com/?submit.475301

third-party-advisory

CVSS V4

Score:

8.7

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Timeline

🟡
Public PoC available
Jan 15, 2025
👾
Exploit known to exist
Jan 15, 2025
Vulnerability published
Jan 15, 2025
Vulnerability Reserved
Jan 15, 2025

Credit

hand_king (VulDB User)

JSON

D-link

Badges

What is CVE-2025-0492?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

Affected Version(s)

Exploit Proof of Concept (PoC)

References

CVSS V4

Timeline

Credit

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.