Rewterz

Prometei Botnet Hits Linux for Crypto Mining – Active IOCs

June 20, 2025
Rewterz

Multiple WordPress Plugins Vulnerabilities

June 20, 2025

Multiple D-Link DIR-825 Vulnerabilities

Severity

High

Analysis Summary

CVE-2025-6292 CVSS:8.8

A vulnerability has been found in D-Link DIR-825 2.03 and classified as critical. This vulnerability affects the function sub_4091AC of the component HTTP POST Request Handler. The manipulation leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. This vulnerability only affects products that are no longer supported by the maintainer.

CVE-2025-6291 CVSS:8.8

A vulnerability, which was classified as critical, was found in D-Link DIR-825 2.03. This affects the function do_file of the component HTTP POST Request Handler. The manipulation leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. This vulnerability only affects products that are no longer supported by the maintainer.

Impact

  • Buffer Overflow

Indicators of Compromise

CVE

  • CVE-2025-6292

  • CVE-2025-6291

Affected Vendors

  • D-Link

Affected Products

  • D-Link DIR-825 2.03

Remediation

Refer to the D-Link Website for patch, upgrade, or suggested workaround information.

CVE-2025-6292

CVE-2025-6291

Reading this advisory was a good start.

Make it a habit.

Rewterz publishes threat advisories ahead of mainstream cybersecurity media, informed by an AI-Native Autonomous SOC that sees regional threat actor activity in real time. Subscribe to receive each new advisory as it publishes, plus a monthly Middle East threat landscape brief drawn from our own SOC telemetry. For teams evaluating their detection coverage, a 30-minute consultation with a senior analyst is also available, at your pace, when you're ready.