| Titolo | D-LINK DIR-846 FW100A53DBR Remote Command Execution |
|---|
| Descrizione | D-Link DIR-846 Firmware FW100A53DBR was discovered to contain a remote command execution (RCE) vulnerability via keys smartqos_express_devices and smartqos_normal_devices in SetSmartQoSSettings. This vulnerability is exploited via a crafted POST request. Another key is covered by CVE-2023-43284. |
|---|
| Fonte | ⚠️ https://github.com/c2dc/cve-reported/blob/main/CVE-2023-XXXX/CVE-2023-XXXX%20.md |
|---|
| Utente | francoa.taffarel (UID 58833) |
|---|
| Sottomissione | 23/11/2023 02:38 (3 anni fa) |
|---|
| Moderazione | 07/12/2023 14:16 (14 days later) |
|---|
| Stato | Accettato |
|---|
| Voce VulDB | 247161 [D-Link DIR-846 FW100A53DBR QoS POST /HNAP1/ smartqos_express_devices/smartqos_normal_devices escalationi di privilegi] |
|---|
| Punti | 18 |
|---|