Zero Day MonitorZDM

← Back to list

EST

PRE-CVE

d-link · dir-650in

D-Link DIR-650IN - Authenticated Command Injection

60% confidence

Description

The D-Link DIR-650IN Wireless N300 Router is vulnerable to an Authenticated Command Injection vulnerability in the Diagnostic (Ping / Traceroute) functionality. The parameter sysHost is not sanitized, allowing an authenticated attacker (even with low-privilege access) to inject OS commands. Exploitation leads to full compromise of the router, including reading sensitive system files such as /etc/passwd.

Affected Products

Vendor	Product	Versions
d-link	dir-650in	Firmware V1.04

Related News (1 articles)

Tier C

Exploit-DB19h ago

[webapps] D-Link DIR-650IN - Authenticated Command Injection

→ No new info (linked only)

CISA KEV❌ No

Actively exploited❌ No

CWECWE-78

PublishedApr 10, 2026

Last enriched4h ago

Tags

command injectionauthenticated

Trending Score19

Source articles1

Independent1

Info Completeness7/14

Missing: cve_id, cvss, epss, kev, patch, iocs, mitre_attack

Community Vote

0 upvotes0 downvotes

No votes yet

Related CVEs (5)

NONECVE-2026-5844

D-Link DIR-882 HNAP1 SetNetworkSettings prog.cgi sprintf os command injection

HIGHCVE-2025-45058

CVE-2025-45058: D-Link DI-8300 v16.07.26A1 was discovered to contain a buffer overflow via the fx parameter in the jingx_asp function. T

HIGHCVE-2025-45057

CVE-2025-45057: D-Link DI-8300 v16.07.26A1 was discovered to contain a buffer overflow via the ip parameter in the ip_position_asp funct

HIGHCVE-2025-45059

CVE-2025-45059: D-Link DI-8300 v16.07.26A1 was discovered to contain a buffer overflow via the fn parameter in the tgfile_htm function.

HIGHCVE-2026-5815

D-Link DIR-645 hedwig.cgi hedwigcgi_main stack-based overflow

Pin to Dashboard

Verification

State: reported

Confidence: 60%

Vulnerability Timeline

CVE Published

Apr 10, 2026

Exploit Available

Apr 10, 2026

Discovered by ZDM

Apr 10, 2026