Command Injection Vulnerability in D-Link DIR-600L Router
CVE-2025-4350
8.7HIGH
What is CVE-2025-4350?
A command injection vulnerability has been identified in the D-Link DIR-600L router, specifically impacting versions up to 2.07B01. This issue affects the wake_on_lan functionality, allowing remote attackers to manipulate the 'host' argument. If successfully exploited, this could lead to unauthorized command execution, potentially compromising the device and the broader network. It is important to note that this vulnerability only affects D-Link DIR-600L units that are no longer receiving support from the manufacturer, emphasizing the need for updated security practices and device management.
Affected Version(s)
DIR-600L 2.07B01