Buffer Overflow Vulnerability in D-Link DIR-880 Router
CVE-2023-39671

9.8CRITICAL

Key Information:

Vendor: D-Link
Status: Dir-880l A1 Firmware
Vendor: CVE Published:; 18 August 2023

What is CVE-2023-39671?

The D-Link DIR-880 router has been identified to contain a buffer overflow vulnerability caused by the function FUN_0001be68. This weakness may allow attackers to execute arbitrary code or disrupt the normal operation of the device, potentially leading to unauthorized access and compromise of the router's security. Users are advised to apply any security patches released by D-Link to mitigate the risks associated with this vulnerability.

References

https://www.dlink.com/en/security-bulletin/

https://support.dlink.com/

https://github.com/Davidteeri/Bug-Report/blob/main/D-Link...

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 18, 2023
Vulnerability Reserved
Aug 7, 2023