D-Link DAP-1325 HNAP SetWLanRadioSettings Channel Command Injection Remote Code Execution Vulnerability
CVE-2023-44403

8.8HIGH

Key Information:

Vendor: D-link
Status: Dap-1325
Vendor: CVE Published:; 3 May 2024

Summary

The D-Link DAP-1325 router is affected by a vulnerability that allows network-adjacent attackers to execute arbitrary code through a command injection flaw within the HNAP1 SOAP endpoint. Specifically, this vulnerability arises due to improper validation of user-supplied strings, enabling attackers to manipulate request parameters to execute system calls. Exploitation does not require any form of authentication, which increases the risk and potential impact on affected environments.

Affected Version(s)

DAP-1325 1.07b01

References

https://www.zerodayinitiative.com/advisories/ZDI-23-1501/

x_research-advisory

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
May 3, 2024
Vulnerability Reserved
Sep 28, 2023