Rewterz

NVIDIA Triton Bug Enables DoS Attacks

December 5, 2025
Rewterz

Cobalt Strike Malware – Active IOCs

December 8, 2025

Multiple D-Link Products Vulnerabilities

Severity

High

Analysis Summary

CVE-2025-13305 CVSS:8.8

A weakness has been identified in D-Link DWR-M920, DWR-M921, DWR-M960, DIR-822K and DIR-825M 1.01.07. This issue affects some unknown processing of the file /boafrm/formTracerouteDiagnosticRun. Executing manipulation of the argument host can lead to buffer overflow. The attack may be launched remotely. The exploit has been made available to the public and could be exploited.

CVE-2025-13304 CVSS:8.8

A security flaw has been discovered in D-Link DWR-M920, DWR-M921, DWR-M960, DWR-M961 and DIR-825M 1.01.07/1.1.47. This vulnerability affects unknown code of the file /boafrm/formPingDiagnosticRun. Performing manipulation of the argument host results in buffer overflow. The attack may be initiated remotely. The exploit has been released to the public and may be exploited.

Impact

  • Gain Access
  • Buffer Overflow

Indicators of Compromise

CVE

  • CVE-2025-13305

  • CVE-2025-13304

Affected Vendors

  • D-Link

Affected Products

  • D-Link DWR-M920 1.01.07
  • D-Link DWR-M921 1.01.07
  • D-Link DWR-M960 1.01.07
  • D-Link DIR-822K 1.01.07
  • D-Link DWR-M921 1.1.47
  • D-Link DWR-M920 1.1.47

Remediation

Refer to the D-Link Website for patch, upgrade, or suggested workaround information.

CVE-2025-13305

CVE-2025-13304

Reading this advisory was a good start.

Make it a habit.

Rewterz publishes threat advisories ahead of mainstream cybersecurity media, informed by an AI-Native Autonomous SOC that sees regional threat actor activity in real time. Subscribe to receive each new advisory as it publishes, plus a monthly Middle East threat landscape brief drawn from our own SOC telemetry. For teams evaluating their detection coverage, a 30-minute consultation with a senior analyst is also available, at your pace, when you're ready.