Medium severity6.3NVD Advisory· Published Sep 22, 2025· Updated Apr 29, 2026
CVE-2025-10814
CVE-2025-10814
Description
A vulnerability was determined in D-Link DIR-823X 240126/240802/250416. Affected by this vulnerability is an unknown functionality of the file /usr/sbin/goahead. This manipulation of the argument port causes command injection. The attack can be initiated remotely. The exploit has been publicly disclosed and may be utilized.
Affected products
3cpe:2.3:o:dlink:dir-823x_firmware:240126:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:o:dlink:dir-823x_firmware:240126:*:*:*:*:*:*:*
- cpe:2.3:o:dlink:dir-823x_firmware:240802:*:*:*:*:*:*:*
- cpe:2.3:o:dlink:dir-823x_firmware:250416:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
5- github.com/W1ngyu/cve/blob/main/DIink-DIR-823xgoformset_server_settings_command_execution_vulnerability.mdnvdExploitThird Party Advisory
- vuldb.comnvdThird Party AdvisoryVDB Entry
- vuldb.comnvdThird Party AdvisoryVDB Entry
- vuldb.comnvdPermissions RequiredVDB Entry
- www.dlink.comnvdProduct
News mentions
0No linked articles in our index yet.