CVE-2025-4443 – D-Link DIR-605L Remote Command Injection Vulnerability

May 9, 2025

CVE ID : CVE-2025-4443

Published : May 9, 2025, 12:15 a.m. | 3 hours, 23 minutes ago

Description : A vulnerability was found in D-Link DIR-605L 2.13B01. It has been rated as critical. This issue affects the function sub_454F2C. The manipulation of the argument sysCmd leads to command injection. The attack may be initiated remotely. The vendor was contacted early about this disclosure. This vulnerability only affects products that are no longer supported by the maintainer.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-4446 – H3C GR-5400AX Local Buffer Overflow Vulnerability

Next Article CVE-2025-4442 – D-Link DIR-605L Remote Buffer Overflow Vulnerability

Highlights

CVE-2023-29113 – Volkswagen Skoda MIB3 Privilege Escalation Vulnerability

June 28, 2025

CVE ID : CVE-2023-29113

Published : June 28, 2025, 4:15 p.m. | 3 hours, 3 minutes ago

Description : The MIB3 infotainment unit used in Skoda and Volkswagen vehicles does not incorporate any privilege separation for the proprietary inter-process communication mechanism, leaving attackers with presence in the system an ability to undermine access control restrictions implemented at the operating system level.
The vulnerability was originally discovered in Skoda Superb III car with MIB3 infotainment unit OEM part number 3V0035820. The list of affected MIB3 OEM part numbers is provided in the referenced resources.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

From Data To Decisions: UX Strategies For Real-Time Dashboards

Honeycomb launches AI observability suite for developers

Low-Code vs No-Code Platforms for Node.js: What CTOs Must Know Before Investing

ServiceNow unveils Zurich AI platform

DistroWatch Weekly, Issue 1139

Building personal apps with open source and AI

What Can We Actually Do With corner-shape?

Craft, Clarity, and Care: The Story and Work of Mengchu Yao

Optimizely Mission Control – Part III

Optimizely Mission Control – Part III

Learning from PHP Log to File Example

Online EMI Calculator using PHP – Calculate Loan EMI, Interest, and Amortization Schedule

DistroWatch Weekly, Issue 1139

DistroWatch Weekly, Issue 1139

sudo vs sudo-rs: What You Need to Know About the Rust Takeover of Classic Sudo Command

Dmitry — The Deep Magic

CVE-2025-4443 – D-Link DIR-605L Remote Command Injection Vulnerability

Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories

Introducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypass

Scattered Spider Hacker Gets 10 Years, $13M Restitution for SIM Swapping Crypto Theft

CVE-2025-52558 – changedetection.io Cross-Site Scripting (XSS)

Obsidian’s Xbox RPG Avowed gets another update bringing bug fixes and these new abilities — and it’s now Steam Deck Verified

CVE-2025-9419 – iSourcecode Apartment Management System SQL Injection

CVE-2023-29113 – Volkswagen Skoda MIB3 Privilege Escalation Vulnerability

China-Backed Hackers Target SentinelOne in ‘PurpleHaze’ Attack Spree

CVE-2025-47219 – GStreamer isomp4 Information Disclosure Vulnerability

Best early Labor Day phone deals 2025: Save up to $300 on Samsung, Google, and more

CVE-2025-4443 – D-Link DIR-605L Remote Command Injection Vulnerability

Related Posts