Vulnerabilities > CVE-2024-39202 - Unspecified vulnerability in Dlink Dir-823X Ax3000 Firmware 240126

CVSS 8.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

dlink

NVD

Published: 2024-07-08

Updated: 2024-07-11

Summary

D-Link DIR-823X firmware - 240126 was discovered to contain a remote command execution (RCE) vulnerability via the dhcpd_startip parameter at /goform/set_lan_settings.

Vulnerable Configurations

Part	Description	Count
OS	Dlink Dlink DIR 823X Ax3000 Firmware 240126	1
Hardware	Dlink Dlink DIR 823X Ax3000 -	1

References

https://gist.github.com/Swind1er/40c33f1b1549028677cb4e2e5ef69109