Command Injection Vulnerability in D-Link DIR-816 Router
CVE-2025-44835

Currently unrated

Key Information:

Vendor: D-Link
Status: DIR-816
Vendor: CVE Published:; 1 May 2025

What is CVE-2025-44835?

A command injection vulnerability has been identified in the D-Link DIR-816 router, specifically in the iptablesWebsFilterRun function. This flaw could allow remote attackers to execute arbitrary commands on the affected device, potentially leading to unauthorized access and control over the network. Proper mitigation steps are necessary to protect against potential exploit attempts.

References

https://github.com/n0wstr/IOTVuln/tree/main/DIR-816/Iptab...

Timeline

Vulnerability published
May 1, 2025
Vulnerability Reserved
Apr 22, 2025