What is CVE-2013-10059?

CVE-2013-10059 is a vulnerability in D-link Dir-615h1, classified under OS Command Injection. Published 2025-08-01.

Is CVE-2013-10059 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

RCE in D-link Dir-615h1

CVE-2013-10059

An authenticated OS command injection vulnerability exists in various D-Link routers (tested on DIR-615H1 running firmware version 8.04) via the tools_vct.htm endpoint. The web interface fails to sanitize input passed from the ping_ipaddr…

Vulnerability class: Command Injection (OS Command Injection)

EPSS: 0.724 (98.8th percentile) — read the EPSS interpretation.

Affected products

D-link Dir-615h1 — versions 0

Weakness classification (CWE)

CWE-78 — OS Command Injection

Public proof-of-concept exploits

rapid7/metasploit-framework

References

raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/l… (exploit)
www.exploit-db.com/exploits/24477 (exploit)
www.exploit-db.com/exploits/25609 (exploit)
web.archive.org/web/20150921102603/http://www.s3cur1ty.de/m1adv2013-008 (technical-description, exploit)
www.vulncheck.com/advisories/d-link-legacy-os-command-injection (third-party-advisory)

Frequently asked questions

What is CVE-2013-10059?: CVE-2013-10059 is a vulnerability in D-link Dir-615h1, classified under OS Command Injection. Published 2025-08-01.
Is CVE-2013-10059 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.