3 matches found
CVE-2022-43628
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-1935 1.03 routers. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...
CVE-2022-43628
Affected product: D-Link DIR-1935 (firmware 1.03). Vulnerable component: web management portal’s SetIPv6FirewallSettings handling of IPv6FirewallRule elements. Root cause: improper validation of a user-supplied string before it is used in a system call, enabling arbitrary code execution with root...
CVE-2022-43628
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-1935 1.03 routers. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...