CVE-2025-14659 – D-Link DIR-860LB1/DIR-868LB1 Vulnerability

Severity

High

Analysis Summary

CVE-2025-14659

A vulnerability was detected in D-Link DIR-860LB1 and DIR-868LB1 203b01/203b03. Affected is an unknown function of the component DHCP Daemon. The manipulation of the argument Hostname results in command injection. It is possible to launch the attack remotely. The exploit is now public and may be used.

Impact

Gain Access

Indicators of Compromise

CVE

CVE-2025-14659

Affected Vendors

D-Link

Affected Products

D-Link DIR-860LB1 203b01
D-Link DIR-860LB1 203b03
D-Link DIR-868LB1 203b01
D-Link DIR-868LB1 203b03

Remediation

Refer to D-Link Website for patch, upgrade, or suggested workaround information.

D-Link Website

Multiple Fortinet Products Vulnerabilities

CISA Alerts on Google Chromium 0-Day Being Exploited

CVE-2025-14659 – D-Link DIR-860LB1/DIR-868LB1 Vulnerability

Severity

High

Analysis Summary

Indicators of Compromise

CVE

Affected Vendors

Affected Products

Remediation

Security Operations Centers across the region

Saudi Arabia

UAE

Oman

Pakistan