CVE-2023-43129

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Sep 22, 2023

Updated: Sep 26, 2023

CWE ID 78

Summary

CVE-2023-43129 is a new vulnerability affecting the D-LINK DIR-806 1200M11AC wireless router (DIR806A1_FW100CNb11). This issue arises due to insufficient filtering of REMOTE_PORT parameters, leading to command injection vulnerabilities. An attacker can exploit this flaw to execute arbitrary commands on the affected device, potentially gaining unauthorized access and control. The consequences could range from data theft to network disruption. Users are advised to update their router firmware as soon as a patch becomes available to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

D LINK SYSTEMS INC

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/suM4yF
https://www.cve.org/CVERecord?id=CVE-2023-43129
https://nvd.nist.gov/vuln/detail/CVE-2023-43129

Back to Vulnerability Database

CVE-2023-43129

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations