CVE-2025-1103 | D-Link DIR-823X 240126/240802 HTTP POST Request set_wifi_blacklists macList null pointer dereference

A vulnerability, which was classified as problematic, was found in D-Link DIR-823X 240126/240802. This affects the function set_wifi_blacklists of the file /goform/set_wifi_blacklists of the component HTTP POST Request Handler. The manipulation of the argument macList leads to null pointer dereference.

This vulnerability is uniquely identified as CVE-2025-1103. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

It is recommended to apply restrictive firewalling.

CVE-2025-1103 | D-Link DIR-823X 240126/240802 HTTP POST Request set_wifi_blacklists macList null pointer dereference

Post correlati

CVE-2024-0506 | Elementor Website Builder Plugin up to 3.18.3 on WordPress get_image_alt cross site scripting

CVE-2023-48694 | azure-rtos usbx up to 6.2.1 type confusion (GHSA-qjw8-7w86-44qj)

CVE-2023-6837 | WSO2 API Manager/Identity Server/IS as Key Manager JIT Provisioning improper authentication

CVE-2024-40690 | IBM InfoSphere Server 11.7 Web UI intended cross site scripting (XFDB-297720)