3 matches found
CVE-2023-44426
D-Link DIR-X3260 SetSysEmailSettings AccountPassword Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-X3260 routers. Although authentication is required to exploit this...
CVE-2023-44426 D-Link DIR-X3260 SetSysEmailSettings AccountPassword Command Injection Remote Code Execution Vulnerability
D-Link DIR-X3260 SetSysEmailSettings AccountPassword Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-X3260 routers. Although authentication is required to exploit this...
CVE-2023-44426
CVE-2023-44426 affects the D-Link DIR-X3260 router. The flaw is in prog.cgi handling HNAP requests to the lighttpd webserver (ports 80/443). It lacks proper validation of a user-supplied string used to invoke a system call, allowing an attacker to execute code with root privileges. Authentication...