CVE-2025-29165

CRITICAL

D-Link DIR-1253 MESH V1.6.1684 - Privilege Escalation

Title source: llm

An issue in D-Link DIR-1253 MESH V1.6.1684 allows an attacker to escalate privileges via the etc/shadow.sample component

Core 4

Core References

Vendor Advisory

Third Party Advisory

Various Sources

CVSS v3 9.8

EPSS 0.0063

EPSS Percentile 45.4%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Vulnrichment

Exploitation poc

Automatable yes

Technical Impact total

CWE

CWE-269

Status published

Products (1)

dlink/dir-1253_firmware 1.6.1684

Published Mar 05, 2026

Tracked Since Mar 06, 2026