CVE-2025-65731
BaseFortify
Publication date: 2026-01-08
Last updated on: 2026-01-13
Assigner: MITRE
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| d-link | dir-605l | 6.02cn02 |
| d-link | dir-605l | From 6.02CN02 (inc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-306 | The product does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability affects the D-Link DIR-605L router (Hardware version F1, Firmware version V6.02CN02) and arises because the UART debug interface is physically exposed via device pins without any authentication or access control. An attacker with physical access to these UART pins can connect to them and gain immediate, unauthenticated root shell access during or after the device boot process. This allows the attacker to execute arbitrary commands on the device with root privileges, bypassing all software-based security mechanisms. [1, 2]
How can this vulnerability impact me? :
The vulnerability allows an attacker with physical access to the router to gain full root-level control over the device without any authentication. This enables the attacker to modify device configurations, install persistent malware, intercept network traffic, and completely bypass on-device security protections. As a result, the confidentiality, integrity, and availability of the router and its connected network can be compromised. Additionally, the compromised router can serve as a pivot point for further attacks on other devices within the network. [1, 2]
How can this vulnerability be detected on my network or system? Can you suggest some commands?
This vulnerability can be detected by physically accessing the UART pins on the D-Link DIR-605L router (Hardware Version F1, Firmware Version V6.02CN02) and connecting them to a serial interface. Using a serial terminal emulator at the correct baud rate, you can access the bootloader output and Linux shell prompt. Commands such as `cat /etc/passwd` can be run to confirm root user access without password protection, indicating the vulnerability. The presence of an unauthenticated root shell prompt (#) confirms the issue. [1, 2]
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
The vulnerability allows an attacker with physical access to gain unauthenticated root shell access to the D-Link DIR-605L router, enabling full control over the device, modification of configurations, installation of persistent malware, and interception of network traffic. This compromises the confidentiality, integrity, and availability of the device and its connected network. Such a compromise could lead to violations of common standards and regulations like GDPR and HIPAA, which require protection of personal and sensitive data, as unauthorized access and data interception could result in data breaches and non-compliance with these regulations. [1, 2]
What immediate steps should I take to mitigate this vulnerability?
To mitigate this vulnerability, immediately restrict physical access to the router to prevent attackers from connecting to the exposed UART pins. Since the UART interface lacks any authentication or access control, physical security is critical. Additionally, consider replacing the affected hardware (D-Link DIR-605L Hardware Version F1 with Firmware Version V6.02CN02) with a more secure device or updated hardware that does not expose the UART interface without protection. There are no software patches available due to the hardware nature of the vulnerability, so physical security and hardware replacement are the primary mitigations. [1, 2]