CVE-2023-43196

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Sep 20, 2023

Updated: Sep 22, 2023

CWE ID 787

Summary

CVE-2023-43196 is a newly identified vulnerability affecting the D-Link DI-7200GV2.E1 v21.04.09E1 router. This issue stems from a stack overflow vulnerability located in the arp_sys.asp function. The zn_jb parameter, when manipulated maliciously, triggers the stack overflow and allows an attacker to execute arbitrary code. Successful exploitation could lead to a complete takeover of the affected device, potentially compromising the entire network. Users are strongly advised to apply the latest security patches to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

D LINK SYSTEMS INC

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/suM2Go
https://www.cve.org/CVERecord?id=CVE-2023-43196
https://nvd.nist.gov/vuln/detail/CVE-2023-43196

Back to Vulnerability Database

CVE-2023-43196

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations