{"vulnerability": "cve-2025-4453", "sightings": [{"uuid": "1a6ca123-6a5d-478f-bd94-ef426a450d14", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-4453", "type": "seen", "source": "https://t.me/cvedetector/24900", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-4453 - D-Link DIR-619L Remote Command Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-4453 \nPublished : May 9, 2025, 3:15 a.m. | 37\u00a0minutes ago \nDescription : A vulnerability was found in D-Link DIR-619L 2.04B04. It has been classified as critical. This affects the function formSysCmd. The manipulation of the argument sysCmd leads to command injection. It is possible to initiate the attack remotely. The vendor was contacted early about this disclosure. This vulnerability only affects products that are no longer supported by the maintainer. \nSeverity: 6.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"09 May 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-05-09T06:10:39.000000Z"}, {"uuid": "b9e92747-ce6a-4497-aceb-ec4bec6296ad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-44531", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114774151504020003", "content": "", "creation_timestamp": "2025-06-30T20:16:08.168614Z"}, {"uuid": "911d1834-1c1d-4da7-95c5-724edcec495c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-44531", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/19378", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-44531\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: An issue in Realtek RTL8762EKF-EVB RTL8762E SDK v1.4.0 allows attackers to cause a Denial of Service (DoS) via sending a crafted before a pairing public key is received during a Bluetooth connection attempt.\n\ud83d\udccf Published: 2025-06-24T00:00:00.000Z\n\ud83d\udccf Modified: 2025-06-24T15:51:46.646Z\n\ud83d\udd17 References:\n1. http://realtek.com\n2. http://rtl8762ekf-evb.com\n3. https://github.com/yangting111/BLE_TEST/blob/main/result/PoC/Realtek/Pairing_Random_Before_Pairing_Public_Key.md", "creation_timestamp": "2025-06-24T16:47:35.000000Z"}, {"uuid": "e58c814e-50ad-49d0-b271-ce132782a923", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-4453", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lopiczur73n2", "content": "", "creation_timestamp": "2025-05-09T06:17:50.587403Z"}, {"uuid": "3240c1bd-ce72-4db9-b918-662130d37bcb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-4453", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lopsj7utyd2h", "content": "", "creation_timestamp": "2025-05-09T06:31:40.102953Z"}, {"uuid": "e7c728a2-5273-4db0-ba9b-3630ac722c13", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-4453", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/15654", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-4453\n\ud83d\udd25 CVSS Score: 5.3 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N)\n\ud83d\udd39 Description: A vulnerability was found in D-Link DIR-619L 2.04B04. It has been classified as critical. This affects the function formSysCmd. The manipulation of the argument sysCmd leads to command injection. It is possible to initiate the attack remotely. The vendor was contacted early about this disclosure. This vulnerability only affects products that are no longer supported by the maintainer.\n\ud83d\udccf Published: 2025-05-09T02:00:07.368Z\n\ud83d\udccf Modified: 2025-05-09T02:00:07.368Z\n\ud83d\udd17 References:\n1. https://vuldb.com/?id.308067\n2. https://vuldb.com/?ctiid.308067\n3. https://vuldb.com/?submit.560797\n4. https://github.com/jylsec/vuldb/blob/main/D-Link/dlink_dir619l/Command_injection-formSysCmd-sysCmd/README.md\n5. https://www.dlink.com/", "creation_timestamp": "2025-05-09T02:25:29.000000Z"}]}