Remote Code Execution Vulnerability in D-Link DSL-3782 Router
CVE-2023-44959

8.8HIGH

Key Information:

Vendor
D-Link
Status
Dsl-3782 Firmware
Vendor
CVE Published:
10 October 2023

Summary

The D-Link DSL-3782 router is susceptible to a remote code execution vulnerability that allows authenticated users to execute arbitrary code with root privileges. This is achieved through manipulation of the Router IP Address fields within the network settings page. Users of affected versions must take immediate action to secure their devices against potential exploitation.

References

https://github.com/FzBacon/CVE-2023-27216_D-Link_DSL-3782...

CVSS V3.1

Score:
8.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
🍪 This website uses cookies, like every other website on the internet 😕 By using our website, you consent to the use of cookies.