D-Link DAR-7000 webmailattach.php Privilege Escalation
CVE-2023-5143

9.8CRITICAL

Key Information:

Vendor: D-link
Status: Dar-7000
Vendor: CVE Published:; 24 September 2023

Badges

👾 Exploit Exists🟡 Public PoC

Summary

A significant vulnerability exists in D-Link DAR-7000 devices that allows remote code execution through manipulation of the argument 'table_name' in the file /log/webmailattach.php. This issue is particularly concerning as it affects versions of the device that are no longer supported. Due to its public disclosure, potential exploits for this vulnerability are available, highlighting the urgent need for affected users to consider product retirement and replacement to mitigate security risks.

Affected Version(s)

DAR-7000 20151231

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2023-5143 - Proof of Concept

References

https://vuldb.com/?id.240239

vdb-entrytechnical-description

https://vuldb.com/?ctiid.240239

signaturepermissions-required

https://github.com/ggg48966/cve/blob/main/D-LINK%20-DAR-7...

exploit

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

CVSS V3.0

Score:

6.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

🟡
Public PoC available
Sep 24, 2023
👾
Exploit known to exist
Sep 24, 2023
Vulnerability published
Sep 24, 2023
Vulnerability Reserved
Sep 24, 2023

Credit

kk1230 (VulDB User)