Lucene search

[email protected]NVD:CVE-2023-44829

HistoryOct 05, 2023 - 4:15 p.m.

CVE-2023-44829

2023-10-0516:15:11

CWE-120

[email protected]

web.nvd.nist.gov

cve-2023-44829

setdevicesettings

buffer overflow

adminpassword

denial of service

d-link dir-823g

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.0005 Low

EPSS

Percentile

16.2%

JSON

D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow via the AdminPassword parameter in the SetDeviceSettings function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input.

Affected configurations

NVD

Node

dlinkdir-823g_firmwareMatch1.0.2b05

AND

dlinkdir-823gMatcha1

References

github.com/bugfinder0/public_bug/tree/main/dlink/dir823g/SetDeviceSettings_AdminPassword

www.dlink.com/en/security-bulletin/

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.0005 Low

EPSS

Percentile

16.2%

JSON

Related for NVD:CVE-2023-44829

cve1 cvelist1 prion1