CVE-2025-45729
BaseFortify
Publication date: 2025-06-27
Last updated on: 2025-07-01
Assigner: MITRE
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| dlink | dir-823_pro_firmware | 1.0.2 |
| dlink | dir-823_pro | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-284 | The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability in the D-Link DIR-823 Pro router is due to improper permission control that allows unauthorized users to remotely enable and access Telnet services without authentication. An attacker can exploit this by sending a specially crafted request to the router's setTelnetsetting API endpoint, which activates the Telnet service remotely. This flaw allows remote attackers to bypass authentication and gain Telnet access to the device. [1]
How can this vulnerability impact me? :
If exploited, this vulnerability can allow an attacker to remotely enable Telnet on your router and gain unauthorized access. This could lead to further compromise of the device, including potential control over network traffic, interception of data, or using the device as a foothold for additional attacks within your network. [1]
How can this vulnerability be detected on my network or system? Can you suggest some commands?
You can detect this vulnerability by checking if the Telnet service is enabled on your D-Link DIR-823 Pro router without proper authorization. One way is to scan the router's IP (e.g., 192.168.0.1) for open Telnet port 23 using a command like `nmap -p 23 192.168.0.1`. Additionally, you can attempt to send an HTTP POST request to the router's HNAP1 interface at "http://192.168.0.1:80/HNAP1/" with the SOAP action "SetTelnetSettings" and observe if Telnet can be enabled without authentication, indicating the vulnerability. [1]
What immediate steps should I take to mitigate this vulnerability?
Immediate mitigation steps include disabling Telnet service on the router if it is enabled, restricting access to the router's management interface to trusted networks only, and applying any available firmware updates from D-Link that address this improper permission control vulnerability. Additionally, monitoring and blocking unauthorized HTTP POST requests to the HNAP1 interface can help prevent exploitation. [1]