Ongoing Attacks Exploiting Critical RCE Vulnerability in Legacy D-Link DSL Routers

A newly discovered critical security flaw in legacy D-Link DSL gateway routers has come under active exploitation in the wild. The vulnerability, tracked as CVE-2026-0625 CVSS score: 9.3, concerns a case of command injection in the "dnscfg.cgi" endpoint that arises as a result of improper...

VulnCheck KEV: CVE-2025-34033

An OS command injection vulnerability exists in the Blue Angel Software Suite running on embedded Linux devices via the pingaddr parameter in the webctrl.cgi script. The application fails to properly sanitize input before passing it to the system-level ping command. An authenticated attacker can...

CVE-2025-34024

An OS command injection vulnerability exists in the Edimax EW-7438RPn firmware version 1.13 and prior via the mp.asp form handler. The /goform/mp endpoint improperly handles user-supplied input to the command parameter. An authenticated attacker can inject shell commands using shell metacharacter...

CVE-2025-25038

An OS command injection vulnerability exists in MiniDVBLinux version 5.4 and earlier. The system’s web-based management interface fails to properly sanitize user-supplied input before passing it to operating system commands. A remote unauthenticated attacker can exploit this vulnerability to...

CVE-2020-10548

creationtimestamp| type| source ---|---|--- 2025-06-04 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities - 2025-06-04 2025-06-06 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities - 2025-06-06 2026-03-17 00:00:00+00:00| exploited| The...

CVE-2022-0769

creationtimestamp| type| source ---|---|--- 2025-01-26 00:00:00+00:00| seen| The Shadowserver honeypot/common-vulnerabilities - 2025-01-26 2025-05-22 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities - 2025-05-22 2025-06-05 00:00:00+00:00| exploited| The Shadowserver...

CVE-2020-11546

creationtimestamp| type| source ---|---|--- 2024-12-21 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities - 2024-12-21 2025-01-26 00:00:00+00:00| seen| The Shadowserver honeypot/common-vulnerabilities - 2025-01-26 2025-02-02 00:00:00+00:00| exploited| The Shadowserver...

CVE-2024-28734

creationtimestamp| type| source ---|---|--- 2024-03-19 15:26:59+00:00| seen| https://t.me/ctinow/211604 2024-04-07 22:02:52+00:00| seen| https://t.me/arpsyndicate/4382 2025-02-04 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities - 2025-02-04 2025-05-15 00:00:00+00:00|...

CVE-2023-50358

creationtimestamp| type| source ---|---|--- 2024-02-13 04:31:44+00:00| seen| https://t.me/ctinow/183591 2024-02-14 12:16:32+00:00| seen| https://t.me/ctinow/184575 2024-02-14 12:20:05+00:00| exploited| https://t.me/truesecator/5413 2024-03-08 08:16:55+00:00| seen| https://t.me/ctinow/203119...

CVE-2024-22319

creationtimestamp| type| source ---|---|--- 2024-02-02 04:21:45+00:00| seen| https://t.me/ctinow/177910 2024-02-23 12:23:01+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/10025 2024-02-24 12:41:34+00:00| seen| https://t.me/ctinow/192554 2025-06-26 00:00:00+00:00|...

CVE-2019-13462

creationtimestamp| type| source ---|---|--- 2024-01-16 04:56:11+00:00| seen| https://t.me/arpsyndicate/2826 2025-05-25 00:00:00+00:00| seen| The Shadowserver honeypot/common-vulnerabilities - 2025-05-25 2025-07-11 00:00:00+00:00| seen| The Shadowserver honeypot/common-vulnerabilities - 2025-07-11...

CVE-2023-41642

creationtimestamp| type| source ---|---|--- 2023-08-31 18:13:03+00:00| seen| https://t.me/cibsecurity/69546 2023-10-11 03:19:16+00:00| published-proof-of-concept| https://t.me/codeb0ss/1231 2023-10-22 22:26:28+00:00| published-proof-of-concept| Telegram/7a7fweCj36f2cd-3XHNsj84vMqrUUzQeix11cFhtTPw...

CVE-2023-1454

creationtimestamp| type| source ---|---|--- 2023-03-17 11:36:42+00:00| seen| https://t.me/cibsecurity/60236 2023-03-24 03:10:54+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/4024 2023-04-13 07:21:20+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/4168 2023-04-13...

CVE-2022-23178

creationtimestamp| type| source ---|---|--- 2022-01-15 18:50:39+00:00| seen| https://t.me/cibsecurity/35645 2024-11-25 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities - 2024-11-25 2024-11-29 00:00:00+00:00| exploited| The Shadowserver...

CVE-2021-3223

creationtimestamp| type| source ---|---|--- 2021-09-21 04:42:19+00:00| seen| https://t.me/pwnwikizhchannel/743 2022-07-05 08:46:21+00:00| published-proof-of-concept| https://github.com/google/tsunami-security-scanner-plugins/tree/master/google/detectors/directorytraversal/cve20213223 2023-12-08...

CVE-2018-10562

creationtimestamp| type| source ---|---|--- 2018-05-10 10:42:33+00:00| seen| MISP/5af412ea-4254-4668-b1ea-44bc950d210f 2018-05-11 16:06:05+00:00| exploited| https://t.me/canyoupwnme/3749 2018-06-18 09:04:20+00:00| seen| MISP/5b2774da-6bb4-46c0-8483-43e102de0b81 2020-01-08 13:22:45+00:00| seen|...

CVE-2014-3120

creationtimestamp| type| source ---|---|--- 2014-05-15 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/33370 2014-05-30 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/33588 2014-10-20 06:04:12+00:00| seen| MISP/5444a4b6-a7b8-41f0-8f49-45c7950d210b 2018-05-29...