Submit #798645: D-Link DIR822A_101 A_101 Buffer Overflowinfo

TitleD-Link DIR822A_101 A_101 Buffer Overflow
DescriptionAn unauthenticated command injection vulnerability exists in the `udhcpd` DHCP service used by D-Link DIR-822 A1 firmware. While processing a `DHCPREQUEST` packet, the server reads the client-supplied hostname from DHCP Option 12 and concatenates it into a shell command that is executed via `system()` without sanitization. As a result, an attacker on the local network can send a crafted DHCP packet containing shell metacharacters in the hostname field and trigger arbitrary command execution on the router.
Source⚠️ https://tzh00203.notion.site/D-Link-DIR-822-A1-Command-Injection-in-udhcpd-via-DHCP-Hostname-337b5c52018a80d9b638d0fa59969e6b
User
 tian (UID 93438)
Submission04/07/2026 13:03 (3 months ago)
Moderation04/26/2026 09:27 (19 days later)
StatusAccepted
VulDB entry359642 [D-Link DIR-822 A_101 udhcpd DHCP Service /udhcpcd/dhcpd.c system Hostname command injection]
Points17

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!