Remote Code Execution Vulnerability in D-Link Routers
CVE-2023-44415

8HIGH

Key Information:

Vendor: D-link
Status: Dir-2150
Vendor: CVE Published:; 3 May 2024

Summary

Multiple D-Link routers are susceptible to a command injection vulnerability in their CLI service, which operates on TCP port 23. Due to insufficient validation of user-supplied inputs, network-adjacent attackers can manipulate these inputs to execute arbitrary code with root privileges on vulnerable devices. Authentication is required to exploit this issue, making it crucial for users to take immediate steps to safeguard their routers from potential exploitation.

Affected Version(s)

DIR-2150 D-Link DIR-1260 version 1.02B06 Hotfix, D-Link DIR-2150 version 1.02

References

https://www.zerodayinitiative.com/advisories/ZDI-23-1513/

x_research-advisory

CVSS V3.1

Score:

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
May 3, 2024
Vulnerability Reserved
Sep 28, 2023