Vulnerabilities > CVE-2023-51123 - Unspecified vulnerability in Dlink Dir-815 Firmware 1.01Ssb08.Bin

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

dlink

critical

NVD

Published: 2024-01-10

Updated: 2024-01-22

Summary

An issue discovered in D-Link dir815 v.1.01SSb08.bin allows a remote attacker to execute arbitrary code via a crafted POST request to the service parameter in the soapcgi_main function of the cgibin binary component.

Vulnerable Configurations

Part	Description	Count
OS	Dlink Dlink DIR 815 Firmware 1.01Ssb08.Bin	1
Hardware	Dlink Dlink DIR 815 -	1

References

https://github.com/WhereisRain/dir-815
https://github.com/WhereisRain/dir-815/blob/main/README.md