What is the CVSS score of CVE-2025-69542?

CVE-2025-69542 has a CVSS 3.1 base score of 9.8 (Critical). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H. EPSS exploitation probability: 1.5%.

Which versions of Dir 895la1 Firmware are affected by CVE-2025-69542?

Organizations using the DHCP daemon service of D-Link DIR895LA1 face critical risk from CVE-2025-69542, a command injection vulnerability rated CVSS 9.8.

Is there a public PoC exploit available for CVE-2025-69542?

Yes, a public proof-of-concept exploit is available for CVE-2025-69542. Prioritise patching immediately. EPSS: 1.5%.

How to fix or mitigate CVE-2025-69542?

Within 24 hours: Identify all affected systems running the DHCP daemon service of D-Link DIR895LA1 and apply vendor patches immediately. Validate that input sanitization is in place for all user-controlled parameters.

Dir 895la1 Firmware CVE-2025-69542

CRITICAL

Command Injection (CWE-77)

2026-01-09 cve@mitre.org

Command Injection D-Link Dir 895la1 Firmware

9.8

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Analysis Generated

Mar 12, 2026 - 21:54 vuln.today

PoC Detected

Feb 10, 2026 - 19:48 vuln.today

Public exploit code

CVE Published

Jan 09, 2026 - 17:15 nvd

CRITICAL 9.8

DescriptionNVD

A Command Injection Vulnerability has been discovered in the DHCP daemon service of D-Link DIR895LA1 v102b07. The vulnerability exists in the lease renewal processing logic where the DHCP hostname parameter is directly concatenated into a system command without proper sanitization. When a DHCP client renews an existing lease with a malicious hostname, arbitrary commands can be executed with root privileges.

AnalysisAI

D-Link DIR-895L router has command injection in the DHCP daemon via the hostname parameter during lease renewal. Any device requesting a DHCP lease with a malicious hostname achieves root code execution on the router. PoC available.

Technical ContextAI

The DHCP lease renewal process concatenates the client hostname into a system command without sanitization (CWE-77). Any device on the network that sends a DHCP request with a crafted hostname can execute commands as root on the router.

RemediationAI

Update firmware. If unavailable, consider replacing the router. This attack vector (DHCP hostname) is particularly difficult to mitigate.

More from same product – last 7 days

CVE-2026-4377 MEDIUM This Month

6.0 May 28

Weak default credential generation in the D-Link DWR-X1820 router exposes administrative access to adjacent-network atta

CVE-2025-69542 vulnerability details – vuln.today

Back

Dir 895la1 Firmware CVE-2025-69542

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

Technical ContextAI

RemediationAI

More from same product – last 7 days

Share

External POC / Exploit Code