2 matches found
CVE-2023-35752
CVE-2023-35752 affects D-Link DAP-2622 via the DDP service, due to improper validation of user-supplied data leading to a stack-based buffer overflow and remote code execution with root privileges. Attack requires network adjacency and no authentication. Documented CVSS v3.1/3.0 score: 8.8 (HIGH)...
CVE-2023-35752 D-Link DAP-2622 DDP Set AG Profile Auth Password Stack-based Buffer Overflow Remote Code Execution Vulnerability
D-Link DAP-2622 DDP Set AG Profile Auth Password Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this...