Buffer Overflow Vulnerability in D-Link DIR-868L Router Firmware
CVE-2023-39667

9.8CRITICAL

Key Information:

Vendor: D-Link
Status: Dir-868l Firmware
Vendor: CVE Published:; 18 August 2023

What is CVE-2023-39667?

The D-Link DIR-868L router is vulnerable to a buffer overflow due to improper input validation in the param_2 parameter within the FUN_0000acb4 function. This flaw allows attackers to exploit the vulnerability to execute arbitrary code, potentially compromising the security of the router and the network it serves. Users should ensure their firmware is updated to mitigate possible threats.

References

https://www.dlink.com/en/security-bulletin/

https://support.dlink.com/

https://github.com/Davidteeri/Bug-Report/blob/main/D-Link...

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 18, 2023
Vulnerability Reserved
Aug 7, 2023