CRITICAL🇵🇱 Wersja polska

CVE-2023-45576

CVSS 9.8v3.1pub. 2023-10-16upd. 2024-11-21

Buffer Overflow vulnerability in D-Link device DI-7003GV2.D1 v.23.08.25D1 and before, DI-7100G+V2.D1 v.23.08.23D1 and before, DI-7100GV2.D1 v.23.08.23D1, DI-7200G+V2.D1 v.23.08.23D1 and before, DI-7200GV2.E1 v.23.08.23E1 and before, DI-7300G+V2.D1 v.23.08.23D1, and DI-7400G+V2.D1 v.23.08.23D1 and before allows a remote attacker to execute arbitrary code via the remove_ext_proto/remove_ext_port parameter of the upnp_ctrl.asp function.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Dlink Di 7003g

    HW
    Dlink
    v2.d1
  • Dlink Di 7003g Firmware

    OS
    Dlink
    ≤ 23.08.25d1
  • Dlink Di 7100g

    HW
    Dlink
    v2.d1
  • Dlink Di 7100g\+

    HW
    Dlink
    v2.d1
  • Dlink Di 7100g Firmware

    OS
    Dlink
    ≤ 23.08.23d1
  • Dlink Di 7100g\+ Firmware

    OS
    Dlink
    ≤ 23.08.23d1
  • Dlink Di 7200g

    HW
    Dlink
    v2.e1
  • Dlink Di 7200g\+

    HW
    Dlink
    v2.d1
  • Dlink Di 7200g Firmware

    OS
    Dlink
    ≤ 23.08.23e1
  • Dlink Di 7200g\+ Firmware

    OS
    Dlink
    ≤ 23.08.23d1
  • Dlink Di 7300g\+

    HW
    Dlink
    v2.d1
  • Dlink Di 7300g\+ Firmware

    OS
    Dlink
    ≤ 23.08.23d1
  • Dlink Di 7400g\+

    HW
    Dlink
    v2.d1
  • Dlink Di 7400g\+ Firmware

    OS
    Dlink
    ≤ 23.08.23d1
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
RCEMemory
CWE
References

Related vulnerabilities

CVE-2025-57105CRITICAL9.8PL ✓ten sam produkt

Command injection w routerze D-Link DI-7400G+ — zdalne wykonanie poleceń

CVE-2023-45575CRITICAL9.8ten sam produkt

Stack Overflow vulnerability in D-Link device DI-7003GV2.D1 v.23.08.25D1 and before, DI-7100G+V2.D1 v.23.08.23...

CVE-2023-45572CRITICAL9.8ten sam produkt

Buffer Overflow vulnerability in D-Link device DI-7003GV2.D1 v.23.08.25D1 and before, DI-7100G+V2.D1 v.23.08.2...

CVE-2023-45573CRITICAL9.8ten sam produkt

Buffer Overflow vulnerability in D-Link device DI-7003GV2.D1 v.23.08.25D1 and before, DI-7100G+V2.D1 v.23.08.2...

CVE-2023-45574CRITICAL9.8ten sam produkt

Buffer Overflow vulnerability in D-Link device DI-7003GV2.D1 v.23.08.25D1 and before, DI-7100G+V2.D1 v.23.08.2...