CVE-2025-8956

MEDIUM

D-Link DIR-818L <= 1.05B01 - Remote Command Injection via ssdpcgi getenv

Title source: llm
STIX 2.1

Description

A vulnerability was found in D-Link DIR‑818L up to 1.05B01. This issue affects the function getenv of the file /htdocs/cgibin of the component ssdpcgi. The manipulation leads to command injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

References (5)

Core 5
Core References
Third Party Advisory, VDB Entry vdb-entry technical-description
https://vuldb.com/?id.319925
Permissions Required, VDB Entry signature permissions-required
https://vuldb.com/?ctiid.319925
Third Party Advisory, VDB Entry third-party-advisory
https://vuldb.com/?submit.627835
Product product
https://www.dlink.com/

Scores

CVSS v3 6.3
EPSS 0.1815
EPSS Percentile 96.9%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

CISA SSVC

Vulnrichment
Exploitation poc
Automatable no
Technical Impact partial

Details

CWE
CWE-74 CWE-77
Status published
Products (1)
dlink/dir-818l_firmware 105b01
Published Aug 14, 2025
Tracked Since Feb 18, 2026