5 matches found
CVE-2022-43624
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-1935 1.03 routers. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...
CVE-2022-43624
creationtimestamp| type| source ---|---|--- 2023-03-29 22:25:56+00:00| seen| https://t.me/cibsecurity/61091...
CVE-2022-43624
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-1935 1.03 routers. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...
CVE-2022-43624
Affected product: D-Link DIR-1935, firmware version 1.03. The vulnerability (CVE-2022-43624) is a command injection flaw in the web management portal, triggered by parsing subelements inside StaticRouteIPv6List during SetStaticRouteIPv6Settings handling. The issue allows network-adjacent attacker...
CVE-2022-43624
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-1935 1.03 routers. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...