Unrated severityCISA KEVNVD Advisory· Published Mar 16, 2023· Updated Oct 21, 2025
CVE-2023-25280
CVE-2023-25280
Description
OS Command injection vulnerability in D-Link DIR820LA1_FW105B03 allows attackers to escalate privileges to root via a crafted payload with the ping_addr parameter to ping.ccp.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- D-Link/DIR820LA1_FW105B03description
Patches
Vulnerability mechanics
References
2News mentions
1- RondoDox: From Targeting Pwn2Own Vulnerabilities to Shotgunning ExploitsTrend Micro Research · Oct 9, 2025