CRITICAL🇵🇱 Wersja polska

CVE-2022-47035

CVSS 9.8v3.1pub. 2023-01-31upd. 2025-03-27

Buffer Overflow Vulnerability in D-Link DIR-825 v1.33.0.44ebdd4-embedded and below allows attacker to execute arbitrary code via the GetConfig method to the /CPE endpoint.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Dlink Dir 825

    HW
    Dlink
    wszystkie wersje
  • Dlink Dir 825 Firmware

    OS
    Dlink
    ≤ 1.33.0.44ebdd4-embedded
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
RCEMemory
CWE
References

Related vulnerabilities

CVE-2020-29557CRITICAL9.8⚠ KEVten sam produkt

An issue was discovered on D-Link DIR-825 R1 devices through 3.0.1 before 2020-11-20. A buffer overflow in the...

CVE-2019-16920CRITICAL9.8⚠ KEVten sam produkt

Unauthenticated remote code execution occurs in D-Link products such as DIR-655C, DIR-866L, DIR-652, and DHP-1...

CVE-2021-46442CRITICAL9.8ten sam produkt

In the "webupg" binary of D-Link DIR-825 G1, attackers can bypass authentication through parameters "autoupgra...

CVE-2026-7068HIGH7.4ten sam produkt

A vulnerability was identified in D-Link DIR-825 3.00b32. This affects the function NMBD_process of the file s...

CVE-2026-7069HIGH7.3ten sam produkt

A security flaw has been discovered in D-Link DIR-825 up to 3.00b32. This impacts the function AddPortMapping ...