D-Link DIR-1253 MESH: Privilege Escalation Risk

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

9.8

D-Link DIR-1253 MESH: Privilege Escalation Risk

CVE-2025-29165

Summary

A security issue in the D-Link DIR-1253 MESH firmware allows an unauthorized user to gain elevated access. This could potentially allow an attacker to take control of the device and disrupt its normal operation. Users should ensure they keep their firmware up to date to mitigate this risk.

Original title

An issue in D-Link DIR-1253 MESH V1.6.1684 allows an attacker to escalate privileges via the etc/shadow.sample component

Original description

An issue in D-Link DIR-1253 MESH V1.6.1684 allows an attacker to escalate privileges via the etc/shadow.sample component

nvd CVSS3.1 9.8

Vulnerability type

CWE-269 Improper Privilege Management

https://www.dlink.com/en/security-bulletin/
https://codeberg.org/zuhri/advisory/src/branch/main/CVE-2025-29165
https://github.com/twentysevns/Vuln-IoT-Reports/blob/main/DLINK/DIR-1253/README....

Published: 5 Mar 2026 · Updated: 13 Mar 2026 · First seen: 6 Mar 2026