Buffer Overflow Vulnerability in D-Link DIR-882 Router
CVE-2022-44806

9.8CRITICAL

Key Information:

Vendor: D-Link
Status: Dir-882 Firmware
Vendor: CVE Published:; 22 November 2022

What is CVE-2022-44806?

The D-Link DIR-882 router, specifically versions 1.10B02 and 1.20B06, is susceptible to a buffer overflow vulnerability. This flaw may allow remote attackers to execute arbitrary code, potentially compromising the integrity and availability of the device. Ensuring timely updates and employing robust security practices are vital for protecting devices against such vulnerabilities.

References

https://www.dlink.com/en/security-bulletin/

https://github.com/RobinWang825/IoT_vuln/tree/main/D-Link...

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 22, 2022
Vulnerability Reserved
Nov 7, 2022