| タイトル | D-Link DIR-823X 250416 OS Command Injection |
|---|
| 説明 | D-Link DIR-823X routers are susceptible to a Remote Command Injection vulnerability via the /goform/set_ddns endpoint. The flaw exists in the backend handling of DDNS (Dynamic DNS) configuration parameters.
Due to an incomplete sanitization mechanism that fails to filter newline characters (\n or 0x0A), an authenticated attacker can inject arbitrary shell commands through parameters such as ddnsType, ddnsDomainName, ddnsUserName, or ddnsPwd. When the system commits these configurations to the UCI (Unified Configuration Interface) and restarts the DDNS service, the injected commands are executed with root privileges via the system shell. |
|---|
| ソース | ⚠️ https://github.com/master-abc/cve/issues/25 |
|---|
| ユーザー | jiefengliang (UID 93721) |
|---|
| 送信 | 2026年01月27日 17:08 (3 月 ago) |
|---|
| モデレーション | 2026年02月06日 22:09 (10 days later) |
|---|
| ステータス | 承諾済み |
|---|
| VulDBエントリ | 344778 [D-Link DIR-823X 250416 DDNS Service /goform/set_ddns ddnsType/ddnsDomainName/ddnsUserName/ddnsPwd 特権昇格] |
|---|
| ポイント | 20 |
|---|