Loading Makriva intelligence feed...
Loading Makriva intelligence feed...
D-Link DIR-823X contains a command injection vulnerability that allows an authorized attacker to execute arbitrary commands on remote devices by sending a POST request to /goform/set_prohibiting via the corresponding function. The impacted product could be end...
CISA lists CVE-2025-29635 as known exploited in the wild for D-Link DIR-823X. Ransomware campaign use: Unknown. Federal remediation due date: 2026-05-08.
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.