4 matches found
CVE-2022-43648
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-3040 1.20B03 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the MiniDLNA service. The issue results from the lack of prope...
Heap overflow
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-3040 1.20B03 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the MiniDLNA service. The issue results from the lack of prope...
CVE-2022-43648
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-3040 1.20B03 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the MiniDLNA service. The issue results from the lack of prope...
CVE-2022-43648
CVE-2022-43648 affects D-Link DIR-3040 routers (version 1.20B03). The flaw is in the MiniDLNA service, where the length of user-supplied data is not properly validated before copying to a heap-based buffer, enabling a heap-based buffer overflow. This allows network-adjacent attackers to execute a...