2 matches found
CVE-2023-35746
D-Link DAP-2622 DDP Firmware Upgrade Auth Username Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this...
CVE-2023-35746
CVE-2023-35746 affects the D-Link DAP-2622 DDP firmware. The flaw resides in the DDP service where insufficient validation of user-supplied data length leads to a stack-based buffer overflow, enabling remote code execution with root privileges. The attack is network-adjacent and requires no authe...