Lucene search

[email protected]CVE-2023-44834

HistoryOct 05, 2023 - 4:15 p.m.

CVE-2023-44834

2023-10-0516:15:11

CWE-120

[email protected]

web.nvd.nist.gov

cve-2023-44834

d-link

dir-823g

buffer overflow

dos

nvd

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.0005 Low

EPSS

Percentile

16.2%

JSON

D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow via the StartTime parameter in the SetParentsControlInfo function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input.

Affected configurations

NVD

Node

dlinkdir-823g_firmwareMatch1.0.2b05

AND

dlinkdir-823gMatcha1

CPENameOperatorVersion
dlink:dir-823g_firmwaredlink dir-823g firmwareeq1.0.2b05

CPE	Name	Operator	Version
dlink:dir-823g_firmware	dlink dir-823g firmware	eq	1.0.2b05

References

github.com/bugfinder0/public_bug/tree/main/dlink/dir823g/SetParentsControlInfo_%20StartTime

www.dlink.com/en/security-bulletin/

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.0005 Low

EPSS

Percentile

16.2%

JSON

Related for CVE-2023-44834

nvd1 prion1 cvelist1